The UK National Cyber Security Centre has called on organisations to embed its Cyber Essentials scheme into their supply chain operations to help protect them from the growing danger of cyber threats.

It recommends that businesses take steps to make Cyber Essentials a standard requirement for suppliers and implement its technical controls within their own systems as part of a strategic approach to managing risk.

The full recommendations are included in the NCSC’s new Cyber Essentials Supply Chain Playbook which includes information on how to assess the risk, profile suppliers and set requirements, as well as guidance on incentivising, implementing and monitoring adoption.

Liz Lloyd, Cyber Security Minister, said: “There have been too many occasions where we’ve seen first-hand the impact that cyber attacks can have on businesses. Supply chains can provide numerous points that attackers look to exploit, but only 14% of firms are on top of the potential risks faced by their immediate suppliers.

“The Cyber Essentials Supply Chain Playbook we have developed with the NCSC is designed to help organisations manage their supply chains more effectively, ensuring their operations are protected every step of the way.”

---