New guidelines from the Defence Cyber Protection Partnership (DCPP) state that Defence Contractors who supply the Ministry of Defence (MoD) must attain Cyber Essentials at the most basic level.
The guidelines which were released on 25 March 2015, have categorised the cyber risks associated with individual contracts into 5 levels: Not Applicable, Very Low, Low, Moderate and High. Cyber Essentials Plus is required at levels Low and higher and at the lowest level, only Cyber Essentials is required, however, contractors are "encouraged to do more".
This latest publication demonstrates how seriously cyber security is being taken at all levels and, interestingly, emphasis is now being placed on Defence Contractors to ensure that their supply chain is secured with Cyber Essentials too.
So, if you're a Defence Contractor supplying the MoD or you're a sub-contractor working with a Defence Contractor, and you need to know more about Cyber Essentials or Cyber Essentials Plus, get in touch and we'll be happy to help you through the process.
The DCPP guidelines for Defence Contractors can be found at https://www.gov.uk/government/publications/defence-cyber-protection-partnership-cyber-risk-profiles.