UK to fine critical organizations up to $24M if they fail to put in strong cyber security

Jan 31, 2018 · techcrunch.com

Gettyimages 673891964

As companies gear up to make themselves complaint with upcoming data protection regulations in Europe around GDPR, those doing business in Member States will also be facing another wave of requirements around cybersecurity, as part of the NIS Directive covering network and information security that must be put into place across Member States by May 9, 2018.

In the UK, the government has announced that organizations working in critical services like energy, transport, water and health can be fined up to £17 million ($24 million) as a "last resort" if they fail to demonstrate that their cybersecurity systems are equipped adequately against attacks.

Major requirements for organizations will include having the right people and organization in place to handle a cyberattack; having the right software in to protect against attacks; having the right capabilities in place to detect if an attack has taken place anyway; and having the right systems in place to minimize the impact of an attack if a system is breached (despite the other three being in place).

More detailed guidance includes how to secure other aspects of your network, such as your supply chain and how your data in the cloud.

Read Complete Article

RT @JonSRobertson: @DHealthLDN @Women_Wearables @techdotlondon @digitalhealth2 @NHSDigital @JulietBauer @LDN_CDO @oht_uk @TechCityUK @techU…

RT @MayorofLondon: I’m redoubling my efforts to fight for gender equality in London. Make your voice heard - join #March4Women, London’s bi…

RT @kradlesoftware: We are all SO excited to be supporting London Tech Week in June 2018 as part of our upcoming launch. Follow us for more…

🎉 🎉 🎉 FTW!!! Midweight Front-end Angular Developer gig at @mipic_app https://t.co/Vf4dMpCDcz #hiring #angularjs

Digital platform strategy: build one before someone else does https://t.co/Gh6VbWZNrp by @joemckendrick

Tech.London Weekly

×