"UK Plans Tough New Security Rules For Data Centers"

The UK government has recently proposed new rules designed to regulate the data center sector in a bid to improve baseline cybersecurity and resilience.  Under the current proposals, data center providers would have a "duty to take appropriate and proportionate technical and organizational measures" to manage security and resilience risk.  This could include risk management, physical and cybersecurity of facilities, networks, and systems, incident management, resilience and service continuity, monitoring, detection, auditing, testing, governance and personnel, and supply chain management.  Data center providers would be required to register with a new regulator and provide relevant operational and incident-related information.

Infosecurity reports: "UK Plans Tough New Security Rules For Data Centers"