This week, the Government unveiled the Telecommunications Security Bill. "This ground-breaking bill will give the UK one of the toughest telecoms security regimes in the world and allow us to take the action necessary to protect our networks", stated Oliver Dowden, Digital Secretary.

Back in 2018 the Government launched its UK Telecoms Supply Chain Review. The review sought to address how the Government might incentivise telecoms providers to improve security standards; consider how the UK might create better sustainability in their telecoms supply chain; and, it would appear as a result of increased pressure from the US, address the security challenges and risks posed by certain telecoms vendors.

The results of the review were published a year later and identified a number of areas of concern. Whilst there was a clear focus on a lack of policy and regulation incentivising effective cyber-risk management, the key and most publicised takeaway was the lack of diversity across the supply chain; a lack of diversity that could lead to national reliance on single suppliers; which is considered a high risk to UK cyber-resilience. The government’s actions in battling these concerns are now neatly codified in the Telecommunications Security Bill (2019-2021).

The Bill is split into two parts, firstly new regulatory powers, including those given to Ofcom, the telecoms regulator, in allowing them to monitor and enforce compliance with the new security requirements; further powers that include issuing large fines for any failure to meet the security obligations. Secondly, the Bill introduces new national security powers for the government to manage the cyber risks posed by certain vendors deemed “high risk”.

The Government’s approach will be welcomed by many. However, the risk of such measures impacting the UK’s 5G ambitions remains.