Question to the Cabinet Office:

To ask His Majesty's Government what measures they are taking to ensure that the UK’s critical national infrastructure is protected from security threats.

Much of the UK’s Critical National Infrastructure (CNI) is owned or operated by the private sector. Lead Government Departments (LGD) for each CNI sector work closely with the National Protective Security Authority (NPSA), the National Cyber Security Centre (NCSC) and regulators to ensure that owners and operators have adequate resilience for the risks they face. Government support takes the form of direct engagement through site visits and briefings and through the provision of information on risks and best practice guidance.

In the Resilience Framework, the Government has additionally committed to introducing minimum standards for resilience, where these are not already in place; this includes specific and ambitious cyber resilience targets for CNI sectors to meet by 2025 as announced at CyberUK in Belfast in April this year.