Guidance
This page contains various security-related guidance for use across government.
GSeC International Travel Advice and Guidance
You can find the GSeC International guidance here (requires signing in).
Secure by Design
You can find the Secure by Design approach here.
GovAssure
You can find the GovAssure guidance here.
Contracting securely
You can find the Modular Security Schedules here
Email guidance
You can find the email guidance here.
How to Publish Information Safely Quick Guide
You can find the How to Publish Information Safely Quick Guide here
Or click here to view or download the PDF.
Social media guidance
You can find the social media guidance here.
Writing security.gov.uk documentation
You can find guidance on writing documentation for security.gov.uk here.
Cyber Assessment Framework (CAF)
You can find the Cyber Assessment Framework (CAF) at NCSC’s website.
Unauthorised disclosure investigation guidance
You can find the unauthorised disclosure investigation guidance here (requires signing in).
The role of Information Asset Owners (IAOs) in government
Guidance on the responsibilities of an IAO in managing the risks to personal information and business critical information held within a department can be found here: The role of Information Asset Owners (IAOs) in government.
Improving security culture
A guide for government security teams – Click here to read this policy
Departmental Security Health Check (DSHC)
The Departmental Security Health Check (DSHC) is a self-assessed questionnaire measuring compliance against the minimum Technical and Functional Security Standards. Click here to find out more.
Cyber Assessment Framework (CAF) for local government
You can read this guidance here