United Kingdom: Department for Science, Innovation and Technology issued Cyber Governance Code of Practice

On 8 April 2025, the UK Department for Science, Innovation and Technology published the Cyber Governance Code of Practice to support boards and directors in managing cyber security risks. The code outlines critical governance actions for directors, emphasising the integration of cyber risk management into broader enterprise risk management. The code includes identifying and prioritising critical technology processes, defining cyber risk appetite, ensuring supplier cyber resilience, and developing a cyber strategy aligned with organisational goals. The code also stresses the importance of promoting a positive cyber security culture, conducting regular risk assessments, and having plans for incident response and recovery.