Cyber Security Model: cyber risk profiles’ requirements

Cyber Security Model information about the proportionate security controls to be implemented and evidence to be submitted as part of all MOD contracts.



Requirements from DEFSTAN 05-138 providing guidance on the controls to be implemented to ensure suppliers comply with the appropriate cyber risk profile.

Published 24 March 2015
Last updated 24 July 2020 + show all updates
  1. Updated Cyber Risk Profile documents for Very Low, Low, Moderate and High.

  2. Added link to: Defence Cyber Protection Partnership: your questions answered

  3. Added link to Defence Cyber Protection Partnership: resource guide.

  4. Added updated 'Implementation of Cyber Essential Scheme: your questions answered' document

  5. Added document for Implementation of Cyber Essential Scheme: Your questions answered

  6. Added updated Cyber Risk Profiles: Requirements, Evidence and Guidance document and overview text.

  7. First published.