Advertisement
Gulfstream banner

News

Articles

Information

Resources

Advancing UK Aerospace, Defence, Security & Space Solutions Worldwide
  • Home
  • /
  • Security
  • /
  • NCSC and CPNI offer joint security strategy to data centre operators and users

Security

NCSC and CPNI offer joint security strategy to data centre operators and users

Posted 7 March 2022
The National Cyber Security Centre (NCSC) and the Centre for the Protection of National Infrastructure (CPNI) have jointly issued guidance to help UK’s data centres stay secure, so that for the first time data centre operators will have access to tailor-made advice on how to keep the UK’s online assets secure.

Image courtesy NCSC

The new guidance from the National Cyber Security Centre (NCSC) – a part of GCHQ – and the Centre for the Protection of National Infrastructure (CPNI) helps users and operators of data centres understand and mitigate potential security vulnerabilities.

Data is one of the UK’s most valuable assets, and it underpins almost all facets of modern life. However, this can make data centres an attractive target for threat actors, both physically and in cyberspace.

Advertisement
ODU RT

The new guidance sets out a holistic security strategy which encourages owners and users to consider how:

  • location and ownership of a data centre can affect who has access to sensitive information or affect strategic operating decisions
  • cyber threat actors continuously evolve their methodology to breach defences
  • strong physical security can mitigate covert and forceful entry to data assets
  • employees are critical to an effective security culture

NCSC Technical Director Dr Ian Levy said: “Operators and users of data centres have a clear responsibility to protect the data that they hold and process – failing to do this poses a massive financial, reputational and, in some cases, national security risk.

“Owning these responsibilities means understanding the array of methods that malicious actors could use to compromise a data centre both physically and digitally.

“I urge operators and users of data centres to consult this joint guidance and adopt the holistic security strategy it recommends.”

The Head of CPNI said: “Data centres and the data they hold are invaluable to the UK’s economy, security and prosperity. Threat actors constantly seek to evolve their methods to exploit any weaknesses in data infrastructure security, often concurrently.

“To minimise the risk of a breach it is critical that data centre security is viewed holistically with physical, people and cyber security risks considered with other factors such as where in the world infrastructure is located.

“By doing so, data centre owners and users can better safeguard their customer’s data, their business operations and keep the UK’s digital infrastructure running.

“In this period of stark geopolitical uncertainty, there is no better time than now for data centre operators and users to read the full guidance and make sure they’re best protected.”

For more information, users and operators of data centres should visit the CPNI website: www.cpni.gov.uk/data-centre-security

Advertisement
ODU RT

For broader advice on configuring, deploying and using cloud services securely, people can consult the NCSC’s existing cloud security guidance

 

 

 

 

 

Advertisement
FIA2026 animated banner
FAC reviews TEKEVER

Aerospace Defence Security Events

FAC reviews TEKEVER's progress in the UK

7 April 2026

Senior representatives from the Farnborough Aerospace Consortium (FAC) recently visited AI-centric autonomous systems provider TEKEVER to see how the Portuguese company is progressing with its UK businesses.

Alexander Battery Technologies expands technical team

Aerospace Defence Security

Alexander Battery Technologies expands technical team

7 April 2026

UK battery pack manufacturer Alexander Battery Technologies has appointed five engineers and a project manager as it expands its technical team.

MGI conducts first TigerShark flights with Auterion

Aerospace Defence Security

MGI conducts first TigerShark flights with Auterion

2 April 2026

MGI Engineering Ltd (MGI) has announced the successful first flights of its TigerShark uncrewed deep strike platform, in partnership with Auterion.

Logiq acquires Savient

Security

Logiq acquires Savient

1 April 2026

Logiq has acquired Savient Ltd, a technology and data specialist focused on delivery in highly regulated environments, strengthening its capability and further expanding its presence in the South-West.

Advertisement
ODU RT
SIA introduces changes for close protection operatives

Security

SIA introduces changes for close protection operatives

1 April 2026

Today, the Security Industry Authority (SIA) have introduced changes to training for those holding, or applying for, a close protection licence.

NCSC warns of messaging app targeting

Security

NCSC warns of messaging app targeting

1 April 2026

Alongside international partners, the National Cyber Security Centre (NCSC) has issued actions for individuals at risk of attacks against messaging apps, as a result of growing malicious activity from Russia-based actors using messaging apps - such as WhatsApp, Messenger and Signal - to target high-risk individuals.

Advertisement
ODU RT
Advertisement
Gulfstream banner

News

Articles

Information

Resources

© 2026 Advance - All rights reserved

Website by Silkstream

The views expressed are not necessarily those of ADS or its members. No responsibility or liability is accepted by ADS, the editorial team or the publisher for any loss occasioned to any person, legal or physical, acting or refraining from action as a result of any statement, fact, figure, expression of opinion or belief contained within this site.

Advertisement
FIA2026 animated banner