Rubrik and Rackspace Technology launch UK Sovereign Cyber Recovery Cloud
Rackspace Technology and Rubrik have introduced the UK Sovereign Cyber Recovery Cloud, a solution targeting ransomware recovery for UK public sector and regulated workloads. This offering aims to enable recovery within hours following a cyberattack, utilizing an environment hosted entirely within the UK.
In the context of evolving digital sovereignty requirements and new regulations imposing stricter recovery and resilience standards, the solution seeks to address these through an automated recovery mechanism. It is designed to meet the regulatory demands such as the National Cyber Security Centre's Cyber Assessment Framework and 24-hour breach notification rules.
The technology integrates Rubrik Security Cloud software with Rackspace's UK Sovereign Services infrastructure to establish an offline, isolated “clean room” recovery environment. This environment is maintained within UK jurisdiction, restricting hardware, data, and administrative controls to UK borders, and is activated only upon ransomware recovery events.
The collaborative effort extends Rackspace and Rubrik's previous work on cyber recovery solutions, employing continuous Security Operations (SecOps) monitoring via Rackspace’s SecOps centre. This surveillance encompasses both cloud and on-premises (on-prem) Software-as-a-Service (SaaS) applications to detect and respond to anomalies promptly.
Rick Martire, General Manager of Sovereign Services at Rackspace UK, said, “2026 is the year where control becomes the new foundation of trust and truly having control over where our data is accessed and located.” David Kosman, Vice President at Rubrik, said, “Our joint solution isn't just about where data is stored - it's about who has the authority to protect and restore it.” They framed the collaboration as an extension of their partnership initiated in 2025 to deliver isolated recovery environments.
The organizations stated intentions to continue developing the solution to support enterprises requiring data protection and compliance within UK borders, addressing operational continuity and recovery time objectives aligned with emerging regulatory frameworks.