Skip to content
11:11 Systems
The Resilient Cloud Platform
11:11 Systems11:11 Systems
  • Why 11:11
    • Submenu
      • Column 1
        • 11:11 Systems Consulting
          Consulting Services
          Global Regions
          Cloud Regions
          11:11 Systems Security
          Security

      • Column 2
        • Cloud Console
          Cloud Console
          Catalyst
          Planning and Assessment
          Compliance
          Compliance

      • WHY CHOOSE 11:11
      • Overview
      • Leadership
      • News & Media
      • ESG Program
      •  
      • Careers
      • Technology Partners
      • Customer Stories
      • Innovation Blog
  • Products & Services
    • Products & Services

        • Cloud Overview
        • Managed Public Cloud
        • Private Cloud
        • Object Storage
        • Cloud Labs
        • Flexible Cloud Environment/Colocation
        • AWS Solutions
        • Managed OS Services
        • Managed DB Services
        Object Storage

        Premium storage without the premium price

        Buy 11:11 Object Storage now
        BUY NOW
        REQUEST A QUOTE

        • Backup Overview
        • Veeam Backup
        • Microsoft 365 Backup
        • Managed Backup for Cohesity
        • Cyber Vault
        • Data Protection Services
        Backup as a Service

        11:11 Cloud Backup

        Protect your data wherever it lives.
        REQUEST A QUOTE
        REQUEST A DEMO

        • DRaaS Overview
        • DRaaS for Veeam
        • DRaaS for Zerto
        • DRaaS for Azure
        • DRaaS for Cohesity
        • Managed Recovery
        • Cloud Recovery
        • Cyber Recovery Platform
        • Infrastructure Recovery
        • Continuity Consulting Services
        • Disaster Recovery Consulting
        Disaster Recovery

        5TB 30Day Free Trial of DRaaS for Veeam

        Protect your business-critical workloads and reduce recovery time with the Leader in Disaster Recovery.
        START FREE TRIAL
        LEARN MORE

        • Security Overview
        • Continuous Risk Scanning
        • Managed Detection and Response
        • Managed SIEM
        • Managed EDR
        • Managed Firewall
        • Application and Zero Trust Services
        Security Services

        Take the first steps toward cyber resilience.

        Download our white paper and learn how to stay ahead of threats.
        REQUEST A QUOTE
        DOWNLOAD NOW

        • Networking Overview
        • SD-WAN
        • Managed SASE
        • Managed Connectivity for AWS Direct Connect
        • Multi-Cloud Connect
        • Circuit Management
        • Network Consulting Services
        Network as a Service

        Transform your network.

        Take your infrastructure and performance to the next level.
        REQUEST A QUOTE
        WATCH VIDEO
  • Solutions
    • Solutions Submenu
      • INDUSTRY
      • Education
      • Financial
      • Government
      • Healthcare
    • Solutions Business Objective Submenu
      • BUSINESS OBJECTIVE
      • Cyber Resilience
      • Modernize
      • Protect
      • Manage
  • Partners
    • Partners Submenu
      • Overview
      • Become a Partner
      • Partner Portals
  • Resources
    • Resources Submenu
      • Events
      • Webinars
      • News & Media
      • White Papers
      • Data Sheets
      • Customer Stories
      • Innovation Blog
  • Support
    • Support Submenu
      • Contact Support
      • Product Documentation
      • API Documentation
Search:
  • Login
  • Contact
Header Right Menu
  • Object Storage
  • Cyber Vault for Cohesity
BUY NOW
Free Trial
  • Why 11:11
    • Consulting Services
    • Cloud Console
    • Cloud Regions
    • Planning and Assessment
    • Security
    • Compliance
    • WHY CHOOSE 11:11
    • Overview
    • Leadership
    • News & Media
    • ESG Program
    • Careers
    • Technology Partners
    • Customer Stories
    • Blog
  • Products & Services
    • CLOUD
    • Cloud Overview
    • Managed Public Cloud
    • Private Cloud
    • Object Storage
    • Cloud Labs
    • Flexible Cloud Environment/Colocation
    • AWS Solutions
    • Managed OS Services
    • Managed DB Services
    • BACKUP
    • Backup Overview
    • Veeam Backup
    • Microsoft 365 Backup
    • Managed Backup for Cohesity
    • Cyber Vault
    • Data Protection Services
    • DISASTER RECOVERY
    • DRaaS Overview
    • DRaaS for Veeam
    • DRaaS for Zerto
    • DRaaS for Azure
    • DRaaS for Cohesity
    • Managed Recovery
    • Cloud Recovery
    • Cyber Recovery Platform
    • Infrastructure Recovery Services
    • Continuity Consulting
    • Disaster Recovery Consulting
    • SECURITY
    • Security Overview
    • Continuous Risk Scanning
    • Managed Detection and Response
    • Managed SIEM
    • Managed EDR
    • Managed Firewall
    • Application and Zero Trust Services
    • NETWORK
    • Network Overview
    • SD-WAN
    • Managed Connectivity for AWS Direct Connect
    • Managed SASE
    • Multi Cloud Connect
    • Circuit Management
    • Network Consulting Services
  • Solutions
    • INDUSTRY
    • Education
    • Financial
    • Government
    • Healthcare
    • BUSINESS OBJECTIVE
    • Cyber Resilience
    • Modernize
    • Protect
    • Manage
  • Partners
    • Overview
    • Become a Partner
    • Partner Portals
  • Resources
    • Events
    • Webinars
    • News & Media
    • Whitepapers
    • Datasheets
    • Customer Stories
    • Innovation Blog
  • Support
    • Contact Support
    • Product Documentation
    • API Documentation
  • Contact
  • Login
  • Buy Now
    • Object Storage
    • Cyber Vault for Cohesity
  • Free Trial
Tags: Backup and disaster recoveryCybercrimesecuritycyber threatsData ProtectionCloud Backup; Backup; Cloud RecoveryDraaSDisaster RecoveryRansomware
Author: Scott Gray
Date: December 1, 2025

UK’s New Cyber Bill Fortifies Defenses

 

The services we rely on daily—healthcare, transport, energy, and water—are the backbone of our society. An attack on these systems can cause massive disruption, affecting everything from hospital appointments to the power in our homes. In response to this growing threat, the UK government introduced the Cybersecurity and Resilience Bill on November 12, 2025, a landmark piece of legislation designed to significantly strengthen the nation’s defenses against cyber-attacks.

This bill represents a major update to the UK’s security framework, aiming to protect essential services, bolster national security, and safeguard the economy. It introduces new regulations, tougher penalties, and expanded government powers to ensure the UK is a more resilient and difficult target for malicious actors. We will explore the key components of this bill and what they mean for businesses and the public.

“As a nation, we must act at pace to improve our digital defences and resilience, and the Cybersecurity and Resilience Bill represents a crucial step in better protecting our most critical services.”

– Dr. Richard Horne, CEO, UK National Cyber Security Centre

The Economic Reality of Cyber Threats

Cyber-attacks are more than just a digital nuisance; they carry a substantial economic cost. New research highlights that the annual cost of cyber-attacks to the UK economy is nearly £15 billion. The average cost for a single significant incident has now surpassed £190,000. These figures illustrate the direct financial drain on businesses and the national economy.

The potential impact of a large-scale attack is even more alarming. The Office for Budget Responsibility (OBR) estimates that a successful cyber-attack on the UK’s critical national infrastructure could force the government to increase borrowing by over £30 billion. This financial shock, equivalent to 1.1% of GDP, underscores the necessity of proactive and robust cyber defense measures. The new bill aims to prevent such a scenario by making security a top priority for essential service providers.

Expanding the Scope of Regulation

A cornerstone of the Cybersecurity and Resilience Bill is the expansion of regulatory oversight. For the first time, medium and large companies providing IT services will be brought under direct regulation. This includes IT management firms, help desk support providers, and cyber security consultants that work with both private and public sector organizations, including the NHS.

Regulating the Supply Chain

Because these IT service providers often have trusted access to sensitive networks across government and critical infrastructure, they represent a potential weak link in the security chain. Recent incidents, like the 2024 attack on the Ministry of Defence’s payroll system via a managed service provider, highlight this vulnerability.

Under the new laws, these companies will have clear security duties. They must implement robust plans to handle cyber incidents and report any significant or potentially significant breaches to the government and their customers promptly. This ensures that when an attack occurs, all affected parties can act quickly to mitigate the damage.

Designating Critical Suppliers

The bill also grants regulators new powers to designate “critical suppliers” to essential services. This could include a company that provides diagnostic equipment to the NHS or a chemical supplier for a water firm. Once designated, these suppliers must meet minimum security requirements, effectively closing gaps in the supply chain that attackers could exploit to cause widespread disruption.

Tougher Penalties and New Government Powers

To ensure compliance, the legislation modernizes enforcement. It introduces tougher penalties for serious security breaches, which can be based on a company’s turnover. This financial incentive is designed to make investing in strong cyber security more cost-effective than paying a fine for non-compliance. The message is clear: organizations providing essential services must prioritize the security of their systems.

Furthermore, the Technology Secretary will receive new powers to direct regulators and the organizations they oversee, such as NHS trusts or water companies. If there is a threat to UK national security, the Secretary can order specific, proportionate actions to prevent a cyber-attack. This could include requiring an organization to enhance its system monitoring or isolate high-risk systems to protect essential services.

As Science, Innovation, and Technology Secretary Liz Kendall stated, “Cyber security is national security. This legislation will enable us to confront those who would disrupt our way of life. I’m sending them a clear message: the UK is no easy target.”

A United Front Against Cyber Threats

The bill emphasizes that cybersecurity is a shared responsibility. It calls for a collective effort from government, businesses, and the public to build national resilience. Organizations will be required to report harmful cyber incidents to their regulator and the National Cyber Security Centre (NCSC) more quickly—within 24 hours for an initial report and a full report within 72 hours. This rapid reporting will help create a clearer national picture of emerging threats and allow for faster support.

Dr. Richard Horne, CEO of the National Cyber Security Centre, reinforced this message: “As a nation, we must act at pace to improve our digital defences and resilience, and the Cybersecurity and Resilience Bill represents a crucial step in better protecting our most critical services.”

Protecting Key Sectors

The legislation specifically targets several key areas:

  • Healthcare: The recent Synnovis incident in the NHS, which led to over 11,000 disrupted medical appointments, demonstrates the severe impact on public health. The bill aims to prevent such events by strengthening the cyber defenses of healthcare providers and their suppliers.
  • Data Centers: These facilities are the lifeblood of the digital economy, storing everything from patient records to payment information. The bill brings them into the scope of regulation, ensuring they meet robust security standards.
  • Energy and Transport: The bill introduces safeguards for organizations that manage electricity flow to smart appliances and transport networks, reducing the risk of disruption to consumers and the national grid.

Building Collective Resilience

The Cybersecurity and Resilience Bill is a significant step forward in protecting the UK from an ever-evolving threat landscape. It acknowledges that the security of our essential services is directly linked to our economic stability and national security.

While the government is taking decisive action, organizations of all sizes must play their part. Improving cyber defenses is not just about compliance; it’s about safeguarding operations, protecting customers, and contributing to the nation’s collective resilience. By modernizing laws, expanding regulation, and fostering a culture of shared responsibility, the UK is building a stronger, more secure digital future for everyone.

 

For more information check out these additional 11:11 resources:

  • White Paper:  The Eight Pillars of Complete Cyber Resilience
  • Web Page:  Cyber Resilience
  • Cyber Recovery and Risk Assessment 
Categories: Data Protection, Data Privacy, Cyber Incident Recovery, Cybersecurity, Cyber Resilience, Managed Services, Cybercrime, DRaaS, Ransomware, SecurityBy Scott GrayDecember 1, 2025
Tags: Backup and disaster recoveryCybercrimesecuritycyber threatsData ProtectionCloud Backup; Backup; Cloud RecoveryDraaSDisaster RecoveryRansomware

Author: Scott Gray

Scott Gray is a Product Marketing Manager at 11:11 Systems focused on managed security where he helps create product messaging and communications. As a "product guy" at heart, Scott has over 30 years of experience working in the IT and Consumer Electronics industries. Before joining 11:11 Systems Scott held roles at Compaq, Dell, HP, Panasonic, and Sharp in a variety of product management and product marketing roles. Scott graduated with a master's degree in International Business from Roosevelt University and also holds an undergraduate degree in Marketing from Oklahoma State University. Scott enjoys spending time with his family and is an avid sports fan.

Post navigation

PreviousPrevious post:Another Year of Uncertainty: 2026 IT PredictionsNextNext post:Cybersecurity Awareness for Small and Medium-sized Businesses: Your 11 point Action Plan

Related Posts

secure cloud backup solutions
Backups Can Save Your Business
June 24, 2026
Quick answer: Data is growing faster than most organizations can store or protect it. Falling hardware costs, abundant bandwidth, paperless workflows, and regulatory mandates all fuel this surge. To keep critical data safe and recoverable, many organizations now outsource backup to specialists like 11:11 Systems, which delivers secure, compliant, cost-effective cloud backup. Picture a closet you keep stuffing with all kinds of clutter. You add a few things each week, then a few each day, until the door barely shuts. Now imagine that closet doubles in size every couple of years, on its own. That's roughly what's happening to corporate data, and your backup strategy is the closet trying to hold it all. Knowing why data is growing so fast and the challenges that growth creates for IT teams is part of the ongoing battle. Perhaps an immediate solution is already at your fingertips? Why is corporate data growing so fast? Data is expanding at a rate that's hard to picture. According to Cybercrime Magazine, the world created, captured, and replicated over 200 zettabytes of data in 2025, up from about 64.2 zettabytes in 2020. That's nearly a threefold jump in five years. Here's the catch many people miss: backup data is one of the biggest culprits behind that growth. Every copy, snapshot, and archive adds to the total. Worldwide data production has outpaced worldwide storage capacity, and the gap between what organizations create and what they can store keeps widening. A few years ago, IT teams mostly worried about data protection, encryption, and automation. The picture looks different now. Today, organizations are demanding: • Continuous data protection • Security and compliance • Bare metal recovery (restoring entire servers, including OS, files, and configurations) • Archiving • Deduplication • Reduced backup windows • Faster recovery speeds What's driving the explosion in data growth? Several trends are accelerating the rate at which corporate data piles up. Here are the five main culprits most organizations struggle with. 1. Cheaper hardware This is the obvious starting point. Storage capacity keeps getting cheaper per gigabyte, so there's little incentive to delete anything. When storage feels nearly free, organizations simply keep more of everything. 2. Cheap and abundant bandwidth Internet bandwidth is no longer the bottleneck it once was. That shift fueled the explosion of streaming media, file sharing, and online storage. It also created a duplication problem. If one person shares a 1GB file with 500 colleagues, that's half a terabyte of storage consumed in a single click. Multiply that across an enterprise, and duplicate data becomes a major source of waste. 3. Business is going paperless Email replaced letters. eBooks and tablets nearly replaced printed books. Digital imaging replaced photographs and x-rays. Paperless offices are better for the environment, and they're also more productive, more flexible, and better at extracting value from business data. The trade-off: every digital document is one more thing to store and protect. 4. The growing strategic importance of data Data used to be a tool that supported decisions. Now it sits at the center of corporate strategy. Companies like Google and Meta built their entire business models around the data they own. Information is power, and that power keeps growing, which means organizations hold on to far more of it. 5. Regulatory compliance Even organizations that want to store less often can't. Regulations like HIPAA and GDPR require companies to retain historical archives for years. As those archives grow, storage becomes a serious business problem. Organizations also need fast, cost-efficient search and retrieval to stay ready for an unexpected e-discovery request. What are the ways organizations lose data? As data grows in volume, its value grows too. Consider it a type of currency that has tremendous value both internally and externally. That makes protecting it more important than ever. And there's no shortage of ways to lose it. Cyberattacks of course are now the leading threat. Ransomware attacks remain a top concern, with the average ransomware event costs climbing into $5.1 million (cost includes ransom payments, recovery costs, and indirect costs like loss of trust and reputational damage). Numerous industry reports including a recent study by Infrascale, highlight the most prevalent way organizations lose data. This includes, but certainly is not limited to the following: • Hardware failure: a crashed laptop, server, or mobile device can render files unrecoverable. • Theft: business break-ins still happen, and stolen devices are rarely recovered. • Human error: data gets accidentally deleted or deliberately wiped by a disgruntled employee. Human mistakes remain one of the most common causes of data loss. • Malware and account compromise: malicious software can hijack a system, and cloud storage accounts can be breached through stolen credentials or phishing. • SaaS data gaps: many assume platforms like Microsoft 365 back up everything. They don't fully, which leaves a gap most organizations don't notice until it's too late. The lesson is simple. The more data you hold, the more ways there are to lose it. Why should organizations outsource data backup? Managing explosive data growth in-house is tough. The volume keeps rising, the threats keep evolving, and the compliance bar keeps moving. That's why many organizations choose to outsource backup to specialists who stay ahead of these trends. Outsourcing backup lets your team adapt quickly to changes in both the growth and the nature of your data, while keeping that data safe and available. Choose this route if predictable costs, expert management, and stronger security matter more to you than running everything yourself. How can 11:11 Systems help? 11:11 Systems is a global cloud service provider of secure and compliant hosting for infrastructure (IaaS), disaster recovery (DRaaS), and backup as a service (BaaS). 11:11 Cloud Backup delivers integrated, secure, and cost-effective protection for on-premises and cloud data, including Microsoft 365 data, so critical business data gets back online quickly after a loss event. With multiple layers of defense, including security, cloud backup, and air-gapped Insider Protection, 11:11 Secure Cloud Backup helps organizations remove single points of failure. That minimizes both the time and the business impact of data loss. It's an easy, cost-effective cloud solution for all your offsite backup and archiving needs. Back to that overstuffed closet. You can keep cramming clutter in and hope the door holds, or you can bring in a decluttering specialist to help you organize and build a bigger, smarter, safer space that grows as you do. In the same way 11:11 Systems can be that professional home organizer that helps with your growing data. With the right backup strategy, data growth stops being a threat and starts being an asset.
Data Growth Tests Backup Capabilities: How to Keep Up
June 19, 2026
2026 HPE Service Provider Partner of the Year
11:11 Systems Wins 2026 HPE Service Provider Partner of the Year
June 16, 2026
Check mark box over a blue screen
How to Create a Disaster Recovery Checklist
June 8, 2026
NaaS Thumb, circuit management
Simplifying Global Connectivity: How 11:11 Circuit Management Transforms IT Operations
June 1, 2026
11:11 Compliance framework
11:11 Compliance Updates: Building a Foundation of Trust
May 20, 2026
11:11 Systems
PRODUCTS & SERVICES
  • Cloud
  • Backup
  • Disaster Recovery
  • Managed Security
  • Network as a Service
  • Compliance
COMPANY
  • Why 11:11
  • Customer Stories
  • Careers
  • Leadership
  • Technology Partners
  • News & Media
  • Contact Support
CLOUD REGIONS
  • North America
  • EMEA
  • APAC
CONNECT
  • LinkedIn
  • X
  • Youtube

© 2026 11:11 Systems Inc., All Rights Reserved | Privacy Notice | Website Terms of Use |

Go to Top