{"id":225209,"date":"2026-03-19T05:00:00","date_gmt":"2026-03-19T09:00:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/19\/uk-regulation-drives-cyber-spending-for-critical-infrastructure-orgs\/"},"modified":"2026-03-19T05:10:19","modified_gmt":"2026-03-19T09:10:19","slug":"uk-regulation-drives-cyber-spending-for-critical-infrastructure-orgs","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/19\/uk-regulation-drives-cyber-spending-for-critical-infrastructure-orgs\/","title":{"rendered":"UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/uk-regulation-drives-cyber\/\">UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/uk-regulation-drives-cyber\/\">https:\/\/www.infosecurity-magazine.com\/news\/uk-regulation-drives-cyber\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-19 05:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>Security leaders at the UK\u2019s top critical national infrastructure (CNI) firms are relying more than ever on regulatory compliance to drive their cyber maturity and investments, Bridewell has found.<\/p>\n<p>In its latest Cybersecurity in CNI Report 2026, the UK-based cyber service provider found that 35% of security leaders working across the UK\u2019s 13 CNI sectors cited regulatory requirements as the primary influence on their security programs. This is up from 26% the in 2025 and 29% the year before.<\/p>\n<p>In parallel, increased connectivity, the desire to support innovation and evolving cyber threats have all stagnated as cyber maturity influences. Only 25% of respondents mentioned one of these factors as driving security investment in 2025 and 2026.<\/p>\n<p>This trend is likely due to a regulatory acceleration, with new legislation like the UK\u2019s Cyber Security Resilience Bill (CSRB) and the EU\u2019s NIS2 directive and Cyber Resilience Act (CRA) coming into force. Moreover, the UK has recently seen the overhaul of the National Cyber Security Centre\u2019s (NCSC) Cyber Assessment Framework (CAF) for CNI organizations.<\/p>\n<p>Speaking during a Bridewell press event in London on March 17, Sam Thornton, COO of Bridewell, said despite regulation compliance being considered more important than before for driving security investment, 35% is \u201cstill fairly low.\u201d<\/p>\n<p>\u201cI think we will start to see regulation growing as the main driver of security investment in the next years to come,\u201d he added.<\/p>\n<p>Read more: Navigating Regulation Discrepancies \u2013 EU\u2019s NIS 2 v UK&#8217;s Cyber Security and Resilience Bill<\/p>\n<h2><strong>Regulatory Challenges Loom for UK Critical Sectors<\/strong><\/h2>\n<p>At the same time, the Bridewell report showed that adoption of major regulatory frameworks remains inconsistent. Less than half of respondents (46%) reported implementation or compliance with the CAF and only 29% reported adoption of the EU\u2019s NIS2 directive.<\/p>\n<p>It\u2019s therefore \u201cunsurprising\u201d, said the report, that 39% of respondents admit&#8230;<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/uk-regulation-drives-cyber\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>UK: Regulation Drives Cyber Spending for Critical Infrastructure Orgs https:\/\/www.infosecurity-magazine.com\/news\/uk-regulation-drives-cyber\/ Publish Date: 2026-03-19 05:00:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":225210,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/c3142649-d53d-45ea-a426-69ba8afe7318.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24],"class_list":["post-225209","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225209"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=225209"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225209\/revisions"}],"predecessor-version":[{"id":225211,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225209\/revisions\/225211"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/225210"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=225209"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=225209"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=225209"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}