New UK Cyber Security and Resilience Bill aims to Strengthen the UK’s defences against cyber attacks on NHS, Transport and Energy.

In light of the newly announced legislation by the UK government — the Cyber Security and Resilience Bill — designed to “strengthen the UK’s defences against cyber attacks on NHS, transport and energy” (published 12 November 2025), it’s critical now that companies put in place resilient, strong, demonstrable cyber-security and continuity capabilities.

The Bill will bring significant new requirements for many organisations operating in the UK:

• Medium and large companies providing IT services and managed services to critical sectors will now fall under regulatory oversight.
• These organisations will need to report significant cyber incidents swiftly, maintain robust continuity plans, and be prepared for tougher enforcement — including turnover-based penalties.
• It signals a shift: cyber-security is now firmly a matter of national security, and regulatory expectations are rising across supply chains. 

In short: If your business provides services to or depends upon the sectors of healthcare, transport, energy, water or other essential services — or if you’re part of the supply chain to such sectors — you must be ready.

How can Intertek help?

Our comprehensive suite of cyber security services and solutions is designed to help you comply, certify and educate your teams in mitigating cyber risk:

• Certification - Secure your data and mitigate cyber threats through Certification to ISO 27001 Information Security, ISO 22301 Business Continuity and ISO 42001 Artificial Intelligence
• Training – Ensure your teams are audit ready for ISO 27001 and ISO 42001
• Ransomware resilience testing -  Simulate real attacks. Prove your defences. Stay ahead. Cyber resilience test against ransomware attacks.
• Cyber Crisis Simulation - Cyber tabletop exercises help your teams practise real-world scenarios, expose weak spots, and strengthen response capabilities across the organisation.
• Penetration Testing for Networks  - Vulnerability Assessments / Penetration testing.  Safeguard your connected systems with expert network penetration testing designed to identify cybersecurity vulnerabilities before attackers do.