Government sets out plans for stronger cyber security controls for the UK telecoms sector

Good idea, supply chain risk is growing all the time. I’d like to see these controls extended to all critical infrastructure not just telecoms…:

[…] The new framework goes beyond the scope of the NIS Regulations, in the sense that it will apply to a wider range of telecoms providers than provided for in the NIS Regulations (namely top level domain and domain name server providers, and Internet exchange points), and include all companies that supply equipment and services in the UK telecoms supply chain. Having said this, we would expect the government and NCSC to draw inspiration from the Cyber Assessment Framework and the utility of such a model in designing the new legislative framework.


Original article here