Guidance

Supplier Cyber Protection Service: supplier assurance questionnaire workflow

The supplier assurance questionnaire (SAQ) allows suppliers to demonstrate compliance with the controls required by a contract and its Cyber Risk Profile.

• From: Ministry of Defence
• Published: 30 March 2017
• Last updated: 16 December 2021 — See all updates

Documents

Supplier Cyber Protection Service: supplier assurance questionnaire workflow (accessible version)

HTML

Supplier Cyber Protection Service: supplier assurance questionnaire workflow

PDF, 264 KB, 6 pages

This file may not be suitable for users of assistive technology.

Request an accessible format.

If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email ddc-modinternet@mod.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Cyber Security Model: Supplier Assurance Questionnaire (SAQ) Question Set Guide

HTML

Details

The supplier assurance questionnaire (SAQ) forms part of the Defence Cyber Protection Partnership (DCPP) Cyber Security Model.

The contracting authority will first perform a risk assessment (RA) of the contract’s Cyber Risk Profile. Suppliers can then complete an SAQ to demonstrate their compliance with this Cyber Risk Profile.

Published 30 March 2017
Last updated 16 December 2021 + show all updates

1. 16 December 2021

   Addition of: Cyber Security Model - Supplier Assurance Questionnaire (SAQ) Question Set Guide.

2. 30 March 2021

   Added updated version: Supplier Cyber Protection Service: supplier assurance questionnaire workflow in HTML and PDF.

3. 29 November 2017

   Updated supplier assurance questionnaire workflow.

4. 30 March 2017

   First published.