COUNTRY FOCUS: UNITED KINGDOM supplier triggers a unified incident response across jurisdictions. Framing these updates as commercial value-adds rather than compliance hurdles often help reduce pushback and speeds up contract execution – particularly with managed service providers, who now sit firmly within the scope of the new rules.
Develop resilience and recovery plans
The bill mandates that businesses develop and maintain comprehensive resilience and recovery plans. These plans should detail how businesses will respond to and recover from cyber incidents, ensuring minimal disruption to operations and swift restoration of services.
Invest in training for all employees
Staff training is the most common preventative measure adopted following a cyber breach in 2025, employed by 32 % of businesses. While this is a positive sign, businesses need to be more proactive in providing employees with the skills to navigate a cyber breach earlier.
Businesses should not underestimate the importance of non-technical employees having a basic understanding of their role in preventing phishing, social engineering and other cyber threats. In fact, phishing attacks are the most prevalent and
Staff training is the most common preventative measure adopted following a cyber breach in 2025, employed by 32 % of businesses.
disruptive cyber breach – and these attacks target individuals regardless of their role or seniority. Building a strong first line of defence starts with empowering every employee to spot and stop threats before they escalate.
Final words
IT professionals should be up to date on security certifications and practice with hands-on training. For example, hands-on labs and sandboxes are vital to ensure real-time experience identifying and protecting against simulated attacks.
The new regulations mark a shift from optional to mandatory when it comes to cybersecurity standards. But they also offer a strategic opportunity. Businesses that invest now will be more resilient, trusted and better positioned to outpace cyberthreats. p
www. intelligentcio. com INTELLIGENTCIO EUROPE 49