Cyber Security Policy and Standards
22 Oct 2025
Level 3, Room GW2 | Sands Expo and Convention Centre
Cybersecurity and IT Resilience: Bridging Protection with Recovery
This presentation will cover the recognition that DNS has not always been accounted for as part of cyber resiliency policies. While recent legislation focuses on ensuring that national critical infrastructure is resilient, the role of DNS is either vaguely defined or omitted entirely.
DNS is fundamental to IP networking. Without it, web browsing does not work, applications break, data and services cannot be accessed. Systemic DNS failures will result in a catastrophic outage fundamentally impacting cyber resilience.
The National Institute of Standards and Technology (NIST) have published updated DNS Security best practices guidance (NIST 800-81) that enables organizations to deploy and operate a resilient DNS architecture. It also recognises the valuable role that DNS can play as a cyber security control. The UK, US, Australia and other governments now use DNS as a foundational pillar of their cyber security / active cyber defence strategy. These capabilities could and should be adopted by public and private sector organizations.
Most organizations do not adequately secure the critical DNS services or leverage the cyber security capabilities in their existing DNS infrastructure.
In this presentation, we will
• Explain the role of DNS in a cyber resilient IT architecture.
• The threats and threat actors that exploit DNS that put this resilience at risk
• The Industry baselines and best practices that are being defined (NIST) and adopted by regulators around the world, including the European Union’s NIS2 directive
• The benefits of adopting Protected DNS services and why governments are incorporating DNS into their cyber security strategy
DNS is fundamental to IP networking. Without it, web browsing does not work, applications break, data and services cannot be accessed. Systemic DNS failures will result in a catastrophic outage fundamentally impacting cyber resilience.
The National Institute of Standards and Technology (NIST) have published updated DNS Security best practices guidance (NIST 800-81) that enables organizations to deploy and operate a resilient DNS architecture. It also recognises the valuable role that DNS can play as a cyber security control. The UK, US, Australia and other governments now use DNS as a foundational pillar of their cyber security / active cyber defence strategy. These capabilities could and should be adopted by public and private sector organizations.
Most organizations do not adequately secure the critical DNS services or leverage the cyber security capabilities in their existing DNS infrastructure.
In this presentation, we will
• Explain the role of DNS in a cyber resilient IT architecture.
• The threats and threat actors that exploit DNS that put this resilience at risk
• The Industry baselines and best practices that are being defined (NIST) and adopted by regulators around the world, including the European Union’s NIS2 directive
• The benefits of adopting Protected DNS services and why governments are incorporating DNS into their cyber security strategy
