Advice and guidance

1 Go to resource

Cyber Resilience Framework

Provide a common, effective way for Scottish public sector organisations to assess their cyber resilience arrangements, identify areas of strength and weakness, gain reasonable confidence that they are adhering to minimum cyber resilience requirements, and take decisions on how/whether to achieve higher levels of cyber resilience on a risk-based and proportionate basis.

Related resources

NCSC Cyber related topics

NCSC’s list of the broad range of cyber security related topics that their advice and guidance covers.

Board Toolkit

NCSC’s Board Toolkit will provide you with the tools you need to have the necessary conversations with your IT team/supplier.

How to get cyber essentials certified IASME

NCSC Cyber Essentials Partner the IASME consortium can help your organisation undertake Cyber Essentials certification or if you want to know how you can become a Certification Body.

Scottish Cyber Coordination Centre – Organisational Cyber Testing and Exercising Regime: Guidance

Outlines a cyber exercising regime to enhance preparedness and recovery from incidents across technical, operational, and strategic levels. It provides guidance for the Scottish public sector, offering a structured approach to testing and exercising, tailored to an organisation’s size.

Supporting guidance for public bodies

Resources to help public sector bodies embed cyber resilience into the supply chain process.

Data protection

Information on how to legally protect personal information.