Skip to main content

Help improve GOV.UK Sign up to take part in user research (opens in a new tab)

Cyber security

Guidance and regulation

Skip to results
141 results sorted by Most viewed
  • Organisations are invited to take the Cyber Resilience Pledge. Commit to 3 actions that will have an immediate positive impact on your resilience to cyber attacks.

  • A list of Industry Security Notices (ISNs) for defence personnel to highlight security changes or information.

  • Cyber Essentials is a government-backed, industry-supported scheme to help organisations protect themselves against common online threats.

  • Good Practice Guide (GPG) 45 helps you decide how to check someone's identity.

  • Document outlining action expected from health and care organisations in 2017 to 2018, to implement recommendations by the National Data Guardian.

  • We’re working to help people securely prove who they are without having to present physical documents.

  • Find out where to report a cyber incident in the UK, Isle of Man or Channel Islands.

  • This Code of Practice and wider governance package shows boards and directors how to manage digital risks and protect their businesses and organisations from cyber attacks.

  • How to apply to join the register and keep your information up to date.

  • Supplier Assurance Questionnaire (SAQ) and Flow Down Risk Assessment (RA) Question sets.

  • This is the 1.0 version of the UK digital verification services (DVS) trust framework, which sets rules for an organisation to follow if they want their service certified as a trustworthy DVS

  • Guidance on how digital identity providers can become certified to complete digital identity checks for the 'Right to Work', 'Right to Rent' and DBS schemes.

    First published during the 2019 to 2022 Johnson Conservative government

  • Frequently asked questions about the Legal Aid Agency cyber security incident.

  • A dedicated space with the latest updates, following the 2025 cyber-attack on the Legal Aid Agency’s online digital services.

  • The Open Call is looking for innovative ideas to improve the defence and security of the UK. Your idea could be a concept, product or service, at various levels of maturity.

  • The code of practice and implementation guide sets out measures to address cyber security risks to artificial intelligence (AI) systems.

  • This Code of Practice sets out expectations for the security and resilience of software.

  • Guidance for organisations certified against the UK digital identity and attributes trust framework who offer delegated authority as part of their service.

  • Details of the TechLocal grant funding programme to boost digital skills and jobs.

  • This guidance, also known as Good Practice Guide (GPG) 45, helps you decide how to check, or ask others to check, the identity of those you interact with.