Advice and guidance

1 Go to resource

Scottish Public Sector Supplier Cyber Security Guidance Note

The security of supply chains is increasingly important as we often see cyber incidents affect public sector bodies indirectly through their suppliers. This guidance note promotes the adoption of a consistent approach to supplier cyber security across the Scottish public sector.

Related resources

Police Cyber Alarm

Businesses in Scotland are being urged to sign up to a free digital tool which monitors the threats from cybercriminals.

IT Managed Services Directory

Find the company that can help manage all of your IT Services. Search the directory of over 170 Scottish companies who provide IT Managed Services. It will easily identify those that are both cyber resilient themselves through the Cyber Essentials […]

Passwords & Two-Step Verification

This guide explains how to create strong, unique passwords (for example using three random words) and why you should never reuse passwords across accounts. It also introduces Two‑Step Verification (2SV) – also called Two‑Factor Authentication (2FA) – as a vital […]

TTX Gym

Running a cyber security exercise is an immersive, effective way to evaluate and practise response skills. Yet, designing and facilitating exercises is complex. TTX Gym provides a custom-designed tool to deliver consistent, effective, and insightful exercising experiences.

Protective DNS for the private sector

Advice on the selection and deployment of protective Domain Name Systems (DNS).

Multi-factor authentication for your corporate online services

This guidance describes how administrators responsible for managing access to online digital services for their organisation can apply the strongest types of multi-factor authentication (MFA). It describes the various types of MFA that are commonly available, explains some pitfalls to […]