The Cabinet Office has announced a £90 million investment to strengthen UK cyber resilience, with Security Minister Dan Jarvis calling for AI companies to work with government on national cyber defence capabilities during CYBERUK 2026.
The announcement was delivered in Glasgow on 22 April 2026 during CYBERUK, the UK government’s flagship cyber security event. It sets out immediate actions alongside longer-term plans to strengthen national cyber resilience through collaboration with industry.
The measures include targeted support for small and medium-sized businesses and the introduction of a Cyber Resilience Pledge to be launched in summer 2026. A full National Cyber Action Plan is also expected, outlining how government and businesses will respond to evolving cyber threats.
Government outlines new cyber defence strategy
The government set out its role in establishing cyber security standards, sharing intelligence, and supporting organisations across the UK economy. It emphasised that responsibility for cyber resilience also rests with individual businesses and institutions.
The strategy frames cyber security as a matter of national security, highlighting the need for consistent baseline protections across all sectors. Organisations are expected to adopt core practices as a minimum requirement for operating in the digital economy.
£90 million investment to strengthen resilience
The £90 million funding package will provide practical support to improve cyber security capabilities, particularly for smaller businesses. It is intended to strengthen resilience across priority sectors and reduce exposure to emerging threats.
- SME support: targeted assistance to help small and medium-sized businesses improve cyber security practices
- Priority sectors: focused investment to strengthen resilience in key areas of the UK economy
Cyber Resilience Pledge for UK organisations
The government will introduce a Cyber Resilience Pledge, inviting organisations to commit publicly to strengthening their cyber security standards. The pledge is designed to increase accountability at senior leadership level.
- Board responsibility: organisations commit to making cyber security a leadership priority
- Supply chain standards: businesses encouraged to ensure suppliers meet Cyber Essentials certification
Rising cyber threats facing UK systems
Officials highlighted a rise in cyber attacks targeting UK organisations, including incidents linked to criminal groups and hostile states. The increasing frequency and complexity of attacks were presented as evidence of a changing threat landscape.
Last year, the National Cyber Security Centre handled over 200 nationally significant incidents, more than double the previous year. These developments are presented as evidence of persistent and active cyber threats.
Cyber Threat Indicators
| Indicator | Recent Movement | Context |
|---|---|---|
| NCSC incidents | Over 200 cases | Handled nationally significant cyber incidents in the last year, showing increased threat activity |
| Attack frequency | More than doubled | Growth compared with the previous year highlights escalating cyber risks |
| Threat actors | Expanded range | Includes criminal groups and hostile states targeting UK systems |
Role of artificial intelligence in cyber security
The speech outlined how artificial intelligence is increasing the speed and scale of cyber attacks. AI systems are able to identify vulnerabilities and automate intrusion methods more rapidly than traditional approaches.
This shift presents new challenges for defence systems, as human-led processes operate at a slower pace than automated threats. The government highlighted the need to match machine-speed threats with advanced defensive capabilities.
AI Cyber Capability Comparison
| Indicator | Recent Movement | Context |
|---|---|---|
| Attack speed | Increased | AI enables faster identification and exploitation of system vulnerabilities |
| Defensive gap | Widening | Human-led responses struggle to keep pace with automated threats |
| Technology adoption | Expanding | AI increasingly used by both attackers and defenders in cyber operations |
Call for collaboration with AI companies
Ministers called on AI companies to work directly with public authorities to develop national cyber defence capabilities. This includes building systems capable of identifying and addressing vulnerabilities at scale.
The approach focuses on combining government intelligence with private sector innovation to create more effective protection for critical infrastructure. Collaboration is presented as necessary to meet the scale of current and future threats.
National Cyber Action Plan and future measures
A National Cyber Action Plan will be published in summer 2026, outlining the government’s long-term approach to cyber security. The plan will set out how public and private sectors will work together to strengthen resilience and support economic growth.
The strategy is expected to define future actions, including standards, partnerships, and investment priorities. It will also establish how the UK intends to respond to the evolving cyber threat environment over the coming years.
Ministerial Comments
Dan Jarvis, Security Minister said;
“Leading AI companies should work with the UK Government to build AI powered cyber defence capabilities. This is a generational endeavour that will test the limits of our engineering and innovation.”
The government’s announcement sets out a combined approach to cyber security, linking investment, business responsibility, and collaboration with AI companies. With cyber threats increasing in scale and complexity, the strategy focuses on strengthening resilience across the economy while preparing for future risks. Further detail is to be set out in the National Cyber Action Plan, which will define how these measures are implemented.
Sources: UK Cabinet Office; Dan Jarvis speech at CYBERUK 2026.
Prepared by Ivan Alexander Golden, Founder of THX News, an independent news organisation delivering timely insights from global official sources. Combines AI-analysed research with human-edited accuracy and context.
