Very low risk
For lower-risk contracts with a small control set.
3 controls, 6 questions
Requires Cyber EssentialsComplete Cyber Confidence
What DCC Level do I need?
This tool helps organisations understand which DCC level may be most appropriate and why.
Before you start
What are the DCC levels?
Defence Cyber Certification is an organisation-wide assessment for defence suppliers. It helps show that cybersecurity is embedded across governance, people, technology, and supply chain practices. Getting DCC ready now can help organisations move faster when a defence opportunity appears, reduce last-minute bid pressure, and show customers that security is already being treated as part of normal business operations.
Low to moderate risk
For broader assurance where suppliers need stronger organisation-wide controls.
101 controls, 236 questions
Requires Cyber EssentialsHigh risk
For higher sensitivity, more access, or greater delivery impact.
139 controls, 328 questions
Requires Cyber Essentials PlusSubstantial risk
For substantial defence risk, critical delivery, or highly sensitive work.
144 controls, 337 questions
Requires Cyber Essentials PlusDCC level check
Find a likely starting point
You do not need to be a DCC Expert to complete this section. Choose the closest answer and use the result as a practical starting point.
Step 1 of 6
Defence work