Guidance

Supplier Cyber Protection Service: supplier assurance questionnaire workflow

The supplier assurance questionnaire (SAQ) allows suppliers to demonstrate compliance with the controls required by a contract and its Cyber Risk Profile.

Documents

Supplier Cyber Protection Service: supplier assurance questionnaire workflow

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email ddc-modinternet@mod.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Details

The supplier assurance questionnaire (SAQ) forms part of the Defence Cyber Protection Partnership (DCPP) Cyber Security Model.

The contracting authority will first perform a risk assessment (RA) of the contract’s Cyber Risk Profile. Suppliers can then complete an SAQ to demonstrate their compliance with this Cyber Risk Profile.

Published 30 March 2017
Last updated 16 December 2021 + show all updates
  1. Addition of: Cyber Security Model - Supplier Assurance Questionnaire (SAQ) Question Set Guide.

  2. Added updated version: Supplier Cyber Protection Service: supplier assurance questionnaire workflow in HTML and PDF.

  3. Updated supplier assurance questionnaire workflow.

  4. First published.