As per our correspondence you can download the latest MOD Notice on Cyber Security notice here to fully understand the key changes for prospective and current suppliers to the MOD.
As DCI supports both MOD and international defence tenders, having Cyber Essentials certification can be beneficial in the bid process for non MOD tenders.
The Cyber Security Model will be a requirement of doing business with the MOD, but there are also additional benefits. For organisations who are less aware of the cyber threat, participating in the process can act as the first step in raising awareness of cyber security in their organisation. It will help to clarify what is expected and enable organisations to make targeted investments. It may also be used to highlight a company’s capabilities to potential customers.
The Cyber Essentials scheme is a government-introduced cyber security accreditation that enables organisations to showcase their credentials as a trustworthy and secure organisation when it comes to cyber security. Cyber Essentials is the minimum certification an organisation needs to implement in order to bid for new MOD defence contracts which include the transfer of ‘MOD identifiable information’.
The MOD has had this made this requirement mandatory since January 2016 for suppliers looking to do business in the defence sector.
As the risk level goes up, some additional controls are required that can be evaluated through Cyber Essentials Plus vulnerability tests.
A full overview of Cyber Essentials is available for free in the scheme summary document.