Developed by the Department for Science, Innovation and Technology (DSIT), the voluntary pledge calls on organisations to take practical action in three key areas:
Making cyber security a Board-level responsibility
Registering for the National Cyber Security Centre’s Early Warning service
Taking a risk-based approach to Cyber Essentials across their supply chains
Signatories also commit to encouraging these measures among their suppliers and publishing annual updates on the steps they have taken to deliver against the pledge.
Building on Our Existing Commitment
Signing the pledge formalises many of the activities we have already been undertaking for some time at Bridewell.
Cyber security is firmly established as a Board-level responsibility at Bridewell, supported by strong governance and oversight across the business. We also maintain a range of Cyber security certifications including ISO 27001, SOC2 and the Defense Cyber Certification and we apply robust security requirements throughout our supply chain, helping us manage third-party risk and protect the clients who place their trust in us.
The pledge provides an important opportunity to build on this work, measure our continued progress and encourages other organisations to adopt the foundational practices needed to improve resilience across the UK.
Anthony Young, CEO at Bridewell, said:
“Signing the Government Cyber Resilience Pledge reflects the standards we have long set for ourselves and the advice we provide to our clients. Many of its commitments are already embedded within the way we operate, from Board-level accountability to managing cyber risk across our supply chain.
“However, resilience is never a finished exercise. It requires sustained attention, regular scrutiny and collective action. By signing the pledge, we are reaffirming our responsibility to continually strengthen our own resilience while helping to raise standards across the organisations and industries we work with.”
Strengthening Resilience Through Collective Action
The government introduced the pledge in response to the increasing frequency, sophistication and impact of hostile cyber activity. Recent incidents have demonstrated that cyber attacks can cause serious operational, financial and societal disruption, with vulnerabilities within interconnected supply chains creating risks that extend far beyond individual organisations.
As a cyber security partner to organisations across Critical National Infrastructure and other highly regulated sectors, we see the importance of this collective approach first-hand. No organisation operates in isolation, and raising resilience across the UK requires businesses, government and suppliers to work together.
More information is available in the government’s Cyber Resilience Pledge information pack.