Following recent high-profile cyber-attacks on major UK organisations, the UK government is moving to significantly widen the scope of the Cyber Security Resilience Bill. Originally focused on critical national infrastructure, the legislation is now expected to extend into sectors such as manufacturing, retail, and financial services.
To explore what this means in practice, Obrela convened an expert panel of cybersecurity, legal, and regulatory leaders to examine the likely impact of the bill and how organisations should prepare.
“There is a strong likelihood that additional sectors will be added — that is the direction we are moving in.”
Dr Richard Jones, Cybersecurity Expert, University of Edinburgh
The panel also warned of the risks of regulatory ‘scope creep’, particularly around mandatory incident reporting requirements that could distract organisations during live cyber incidents.
“What we really need to avoid is crippling organisations and their ability to respond to attacks.”
Adam Avards, Principal of Cyber Security & Third-Party Risk Policy, UK Finance
Beyond the risks, the discussion highlights how organisations can turn regulatory compliance into a competitive advantage by reducing costs, strengthening supply-chain trust, and focusing on real security outcomes.
“The goal should always be actual security — not mere compliance.”
Notis Iliopoulos, EVP Managed Risk & Controls, Obrela
🎥 Watch the On-Demand Webinar
Get expert insight into how UK cybersecurity regulation is evolving — and what your organisation should do next.
👉 Download the full webinar by completing the form
