Skip to content
11:11 Systems
The Resilient Cloud Platform
11:11 Systems11:11 Systems
  • Why 11:11
    • Submenu
      • Column 1
        • 11:11 Systems Consulting
          Consulting Services
          Global Regions
          Cloud Regions
          11:11 Systems Security
          Security

      • Column 2
        • Cloud Console
          Cloud Console
          Catalyst
          Planning and Assessment
          Compliance
          Compliance

      • WHY CHOOSE 11:11
      • Overview
      • Leadership
      • News & Media
      • ESG Program
      •  
      • Careers
      • Technology Partners
      • Customer Stories
      • Innovation Blog
  • Products & Services
    • Products & Services

        • Cloud Overview
        • Managed Public Cloud
        • Private Cloud
        • Object Storage
        • Cloud Labs
        • Flexible Cloud Environment/Colocation
        • AWS Solutions
        • Managed OS Services
        • Managed DB Services

        Infrastructure as a Service

        Take a 30-day free trial of 11:11 Cloud.

        Cloud hosting built for your business.
        START FREE TRIAL
        REQUEST A QUOTE

        • Backup Overview
        • Veeam Backup
        • Microsoft 365 Backup
        • Managed Backup for Cohesity
        • Cyber Vault
        • Data Protection Services
        Backup as a Service

        11:11 Cloud Backup

        Protect your data wherever it lives.
        REQUEST A QUOTE
        REQUEST A DEMO

        • DRaaS Overview
        • DRaaS for Veeam
        • DRaaS for Zerto
        • DRaaS for Azure
        • DRaaS for Cohesity
        • Managed Recovery
        • Cloud Recovery
        • Cyber Recovery Platform
        • Infrastructure Recovery
        • Continuity Consulting Services
        • Disaster Recovery Consulting
        Disaster Recovery

        5TB 30Day Free Trial of DRaaS for Veeam

        Protect your business-critical workloads and reduce recovery time with the Leader in Disaster Recovery.
        START FREE TRIAL
        LEARN MORE

        • Security Overview
        • Continuous Risk Scanning
        • Managed Detection and Response
        • Managed SIEM
        • Managed EDR
        • Managed Firewall
        • Application and Zero Trust Services
        Security Services

        Take the first steps toward cyber resilience.

        Download our white paper and learn how to stay ahead of threats.
        REQUEST A QUOTE
        DOWNLOAD NOW

        • Networking Overview
        • SD-WAN
        • Managed Connectivity for AWS Direct Connect
        • Multi-Cloud Connect
        • Network Consulting Services
        Connectivity Services

        Transform your network.

        Take your infrastructure and performance to the next level.
        REQUEST A QUOTE
        WATCH VIDEO
  • Solutions
    • Solutions Submenu
      • INDUSTRY
      • Education
      • Financial
      • Government
      • Healthcare
    • Solutions Business Objective Submenu
      • BUSINESS OBJECTIVE
      • Cyber Resilience
      • Modernize
      • Protect
  • Partners
    • Partners Submenu
      • Overview
      • Become a Partner
      • Partner Portals
  • Resources
    • Resources Submenu
      • Events
      • Webinars
      • News & Media
      • White Papers
      • Podcast
      • Data Sheets
      • Customer Stories
      • Innovation Blog
  • Support
    • Support Submenu
      • Contact Support
      • Product Documentation
      • API Documentation
Search:
  • Login
  • Contact
Header Right Menu
Free Trial
  • Why 11:11
    • Consulting Services
    • Cloud Console
    • Cloud Regions
    • Planning and Assessment
    • Security
    • Compliance
    • WHY CHOOSE 11:11
    • Overview
    • Leadership
    • News & Media
    • ESG Program
    • Careers
    • Technology Partners
    • Customer Stories
    • Blog
  • Products & Services
    • CLOUD
    • Cloud Overview
    • Managed Public Cloud
    • Private Cloud
    • Object Storage
    • Cloud Labs
    • Flexible Cloud Environment/Colocation
    • AWS Solutions
    • Managed OS Services
    • Managed DB Services
    • BACKUP
    • Backup Overview
    • Veeam Backup
    • Microsoft 365 Backup
    • Managed Backup for Cohesity
    • Cyber Vault
    • Data Protection Services
    • DISASTER RECOVERY
    • DRaaS Overview
    • DRaaS for Veeam
    • DRaaS for Zerto
    • DRaaS for Azure
    • DRaaS for Cohesity
    • Managed Recovery
    • Cloud Recovery
    • Cyber Recovery Platform
    • Infrastructure Recovery Services
    • Continuity Consulting
    • Disaster Recovery Consulting
    • SECURITY
    • Security Overview
    • Continuous Risk Scanning
    • Managed Detection and Response
    • Managed SIEM
    • Managed EDR
    • Managed Firewall
    • Application and Zero Trust Services
    • NETWORK
    • Network Overview
    • SD-WAN
    • Managed Connectivity for AWS Direct Connect
    • Multi Cloud Connect
    • Managed IP
  • Solutions
    • INDUSTRY
    • Education
    • Financial
    • Government
    • Healthcare
    • BUSINESS OBJECTIVE
    • Cyber Resilience
    • Modernize
    • Protect
  • Partners
    • Overview
    • Become a Partner
    • Partner Portals
  • Resources
    • Events
    • Webinars
    • News & Media
    • Whitepapers
    • Podcast
    • Datasheets
    • Customer Stories
    • Innovation Blog
  • Support
    • Contact Support
    • Product Documentation
    • API Documentation
  • Contact
  • Login
  • Free Trial
Tags: Cloud ComputingCybercrimeManaged Security ServicessecurityData ProtectionCloud ComplianceCloud Services
Author: Sean Tilley
Date: July 8, 2025

Navigating Operational Resilience Regulation in Cloud Computing

The rate of adoption for cloud computing has grown steadily across many industries, driven by the need for flexibility, innovation and cost efficiency. One of the key verticals that has fully embraced cloud technology is the financial services sector. Cloud is particularly suited to this industry as it allows for more efficient storage, faster processing of large amounts of data, and consolidation of records which gives firms the ability to accurately analyse data.

However, migrating to the cloud poses some challenges for financial institutions. Cyber criminals target the industry due to the high- value nature of the data that financial services companies hold. Cloud migration, if tackled improperly, can result in the organisation’s data being exposed to threat actors. To help combat this, the industry is heavily regulated in terms of how data is stored and protected.

The UK’s PS21/3 regulation, which came into force on the 31st of March 2025, set out new guidelines for financial institutions, such as banks, insurers, and payment providers, to ensure a high standard of operational resilience for the industry.

Operational Resilience and Cloud Computing

The regulation highlights a few key areas that financial institutions should be aware of for their cloud strategy. Primarily, PS21/3 emphasises the need for operational resilience, meaning that cloud -based services can withstand disruption. Downtime and outages are particularly devastating for financial institutions, as loss of service can disrupt commerce and heavily affect business functions for the victim organisation and any third parties that utilise their service.

The regulation also states that firms should have a clear exit plan in place for migrating away from their current managed service provider (MSP). This is to ensure that, in the event of a breach, data can be moved to a safe environment and prevent threat actors from breaching the same system multiple times.

Another key focus for the regulation is proper oversight of third-party cloud providers. Public clouds are popular, along with MSP solutions, as they allow businesses to take advantage of cloud technology without having to invest in their own cloud infrastructure. PS21/3 pushes organisations to properly vet their cloud providers to ensure they are secure enough for the sensitive data held by financial institutions.

Best Practices for PS21/3 Compliance

For financial institutions to be properly compliant with the new PS21/3 regulation, organisations can conduct due diligence in several ways.

Firstly, businesses must take responsibility for their third-party cyber risk management. Most organisations do not create their own cloud infrastructure, as this is expensive, time- consuming, and requires specific expertise which are not usually found in-house. Instead, it is much more common to use an external cloud provider. This could be in the form of public clouds, or something more specialised and tailored to the organisation’s specific business needs. Financial institutions must conduct a comprehensive vendor assessment before onboarding their cloud service provider (CSP), to ensure that they also comply with industry regulations, which can be included as part of the contract with the CSP. It is also good practice for financial services companies to request their CSPs to provide audit reports, such as ISO 270001.

Financial services companies should also build operational resilience into their cloud strategy. This can be done by utilising multi-cloud or hybrid-cloud architectures, which reduces the reliance on one specific CPS, adding an extra layer of protection when one cloud provider suffers downtime. It is also important for businesses to have robust, regularly tested disaster recovery and incident response plans in place, to minimise the effect of any downtime and ensure the system is back up and running as quickly as possible.

To be cyber resilient, firms need to be flexible with their cloud partners. Cloud migration is a long and complex process, but PS21/3 demands that firms have credible exit plans if they need to switch providers or revert to on-premises solutions. Given the complexity of cloud environments, ensuring data portability and minimal disruption during a transition is a significant challenge. To make this transition as smooth as possible, financial institutions must maintain comprehensive documentation of cloud configurations and establish a phased exit plan with clear milestones and contingency measures.

PS21/3 presents both a compliance challenge and an opportunity for financial institutions to strengthen their cloud strategies. By proactively addressing third-party risk, operational resilience, exit planning, and data security, firms can meet regulatory expectations and enhance trust, agility, and competitiveness in an increasingly digital landscape.

As cloud adoption continues to evolve, financial institutions must adopt a strategic, risk-aware approach to cloud computing, ensuring compliance without compromising innovation.

Categories: Data Protection, Data Privacy, ComplianceBy Sean TilleyJuly 8, 2025
Tags: Cloud ComputingCybercrimeManaged Security ServicessecurityData ProtectionCloud ComplianceCloud Services
Sean Tilley

Author: Sean Tilley

Sean Tilley is the Senior Director of Sales for EMEA at 11:11 Systems. He's spent his career helping organisations of all sizes deliver beneficial and tangible business outcomes through consultative engagements. He's focused on ensuring customers can increase operational and cyber resilience while improving key business objectives, such as growth.

Post navigation

PreviousPrevious post:HPE Zerto Names 11:11 Global Partner of the YearNextNext post:Navigating DORA: Key Considerations for the Financial Sector

Related Posts

VMware Partner
Major VMware Partnership Announcement and How 11:11 Systems Keeps You Moving Forward
July 16, 2025
Entra ID
Recovering Entra ID with Veeam
July 16, 2025
Laptop computer with an image of a padlock on the screen.
Protecting Entra ID with Veeam
July 10, 2025
Digital Operational Resilience Act (DORA)
Helping the Financial Sector Deliver Secure and Modern Infrastructure through Regulation
July 10, 2025
Digital Operational Resilience Act (DORA)
DORA Non-Compliance Could Cost Your Business
July 10, 2025
Cyber Resiliency
Key Components of Cyber Resiliency
July 9, 2025
PRODUCTS & SERVICES
  • Cloud
  • Backup
  • Disaster Recovery
  • Managed Security
  • Network as a Service
  • Compliance
COMPANY
  • Why 11:11
  • Customer Stories
  • Careers
  • Leadership
  • Technology Partners
  • News & Media
  • Contact Support
CLOUD REGIONS
  • North America
  • EMEA
  • APAC
CONNECT
  • LinkedIn
  • X
  • Youtube

© 2025 11:11 Systems Inc., All Rights Reserved | Privacy Notice | Website Terms of Use |

Go to Top