Periculo Awarded IASME Defence Cyber Certification (Certification Body Level 0)

We are excited to announce that Periculo Limited has been officially awarded the Defence Cyber Certification – Certification Body Level 0 by The IASME Consortium Ltd.

This achievement means that Periculo is now an IASME-accredited Certification Body for the Ministry of Defence’s new Defence Cyber Certification (DCC) scheme at Level 0.

In practice, this designation authorises us to assess and certify organisations at the foundational Level 0 tier of the DCC framework. The IASME Consortium, as the MoD’s appointed delivery partner for DCC, works with a network of trusted cybersecurity companies across the UK to certify suppliers under this scheme. Periculo’s inclusion in this network is a significant milestone, reflecting our expertise and commitment to cybersecurity excellence.

What is the IASME Defence Cyber Certification (DCC)?

The Defence Cyber Certification (DCC) is a new comprehensive cybersecurity certification framework for UK defence suppliers, developed jointly by the UK Ministry of Defence (MOD) and IASME. It was introduced to enhance the cyber resilience of the defence supply chain by providing a formal, organisation-wide assurance of a supplier’s cyber security posture.

In essence, DCC replaces the old contract-by-contract self-assessment questionnaires with a single, point-in-time certification that remains valid for three years (with annual check-ins) and can be used to support multiple defence procurement bids.

This scheme emphasises holistic security and resilience – companies must demonstrate they have appropriate controls in place and operating effectively, not just on paper. All levels of DCC build on existing best practices; notably, every certification level starts with achieving Cyber Essentials as a baseline, with the higher levels even requiring Cyber Essentials Plus.

By aligning with MOD standards, the DCC provides confidence that certified suppliers are meeting robust cybersecurity requirements in line with national and international best practices. For defence contractors and subcontractors, DCC is poised to become a key requirement. Compliance with this standard will soon be expected in all MOD procurement and contracts. In short, DCC is set to be a game-changer for how cybersecurity compliance is assured in the UK defence sector.

What Does “Certification Body Level 0” Mean?

Within the DCC scheme, “Certification Body Level 0” indicates that Periculo is accredited to certify organisations at Level 0, the foundational tier of the Defence Cyber Certification framework. The DCC scheme defines four levels of certification (Level 0 through Level 3) corresponding to increasing cyber maturity and risk profiles. Level 0 is the entry point, designed for suppliers handling very low assessed cyber risk in their defence-related activities. Achieving DCC Level 0 requires compliance with just three basic cybersecurity controls, essentially representing strong fundamental cyber hygiene. Despite being “basic,” these controls form the foundation for all higher DCC levels, ensuring that organisations establish solid cybersecurity practices before tackling more advanced requirements.

For Periculo to become an IASME Certification Body at Level 0, we have met IASME’s rigorous criteria and training requirements to deliver the scheme. Certification Bodies (CBs) are specially trained and IASME-licensed cybersecurity companies approved to carry out assessments and certifications. Now, as a Level 0 CB, we are authorised to conduct DCC Level 0 assessments, meaning we can evaluate whether an organisation meets the required three controls and then issue the official certificate (on IASME’s behalf) to those who pass. In practical terms, this accreditation attests to Periculo’s capability and knowledge of the DCC framework. It also signals that we uphold IASME’s standards for impartiality, quality, and expertise in cyber security auditing. Being a “Certification Body Level 0” is both an endorsement of our team’s competencies and a responsibility: we will ensure that every assessment we carry out is thorough, fair, and aligned with the MOD’s expectations for supply chain security.

Significance to Our Clients and Partners

What does this certification mean for you, our clients and partners? First and foremost, it expands the services and assurance we can provide. For defence sector suppliers (or those aspiring to enter the defence supply chain), Periculo can now serve as your trusted partner to achieve DCC Level 0 certification. If your organisation has a low cyber risk profile for MOD contracts, obtaining a Level 0 certificate is an excellent way to demonstrate baseline cybersecurity compliance and meet emerging MOD requirements. With Periculo as an accredited assessor, you have a direct route to get certified under this new scheme. This can save you time and reduce complexity. Instead of navigating the process alone, you’ll be guided and evaluated by our qualified assessors who understand both the technical controls and the broader context of defence procurement needs.

For our commercial and technology partners, Periculo’s status as an IASME DCC Certification Body is a strong indicator of our credibility and expertise. It reassures you that we are recognised by a UK national authority in cybersecurity. In achieving this, we’ve effectively demonstrated our own adherence to high security standards and deep familiarity with the MOD’s cyber expectations. Partners can take confidence that engaging with Periculo, whether for joint projects, referrals, or integrated solutions, means teaming with a company that holds formal credentials in defence cyber assurance. This can bolster the trust your stakeholders place in collaborative efforts involving us. Moreover, our involvement at the ground level of the DCC scheme keeps us at the forefront of defence-focused cybersecurity developments. We can share insights on compliance trends, best practices, and requirements coming down the line, adding value to our partnerships beyond just the certificate itself.

Benefits: Capability, Trustworthiness, and Assurance

Earning the DCC Certification Body Level 0 status brings tangible benefits that we, in turn, pass on to our clients. It is a testament to Periculo’s capability and trustworthiness in the cybersecurity domain. From a capability perspective, our team has proven skills to interpret defence cyber standards and assess organisational security controls against them. We are equipped to not only perform the evaluation, but also to guide applicants through the process – for example, clarifying the intent of each control and what evidence is needed. This advisory aspect (within the bounds of the scheme rules) means we can help companies prepare effectively for certification, leveraging our experience to improve their chance of success. Our dual role as both advisor (pre-assessment) and assessor (during certification) underscores a breadth of expertise that few organisations possess and ensures a smoother journey towards compliance for our clients.

From a trust and assurance standpoint, having this certification reinforces that Periculo operates with the highest standards of integrity and quality. The IASME Consortium’s approval is not given lightly – it reflects that Periculo has robust internal processes, experienced personnel, and a commitment to continuous improvement in line with IASME’s own quality principles. Clients who work with us for DCC (or any cybersecurity service) can therefore have greater confidence in our professionalism. When we certify a company at DCC Level 0, that certificate carries weight: it is recognised by the Ministry of Defence and defence primes as evidence of the supplier’s cyber security maturity. In other words, by working through an accredited body like Periculo, your certification will be accepted and respected during tender processes, giving you peace of mind that your efforts translate into real-world assurance. Additionally, the DCC scheme itself offers broader organisational benefits – it’s a proactive way to boost cyber resilience, meet MOD requirements, and gain a competitive edge in the defence market. We are proud to facilitate these advantages for our clients. Certification under DCC demonstrates commitment to cyber resilience, streamlines procurement, and reduces repeated assessments. It also strengthens your overall security posture by identifying and addressing any vulnerabilities along the way. These are exactly the outcomes we aim to deliver as your Certification Body partner.

Reinforcing Our Commitment to Cybersecurity Excellence

Achieving the IASME Defence Cyber Certification Body Level 0 is not an endpoint for Periculo, but rather another stepping stone in our ongoing mission to uphold the highest cybersecurity and defence standards. We view this accomplishment as reinforcement of our commitment to safeguarding data and systems in all the sectors we serve – especially those as critical as defence. Periculo will continue to invest in our people, processes, and technologies to stay ahead of evolving threats and compliance needs. As the DCC scheme evolves (with higher-level certifications and future MOD mandates), we plan to expand our accreditation scope so we can assist clients at Level 1 and beyond, eventually covering the full spectrum of the scheme. In the meantime, we are fully prepared and excited to start working with organisations on Level 0 assessments.

We would like to thank our team for the dedication and expertise that went into meeting the IASME Consortium’s stringent criteria. This certification is fundamentally about confidence and assurance – confidence that Periculo can competently evaluate cybersecurity readiness against defence standards, and assurance that defence-aligned businesses can rely on us to help secure and evidence their place in the supply chain.

We look forward to using this new accreditation to support your cybersecurity and compliance objectives, from demonstrating baseline readiness for MOD opportunities through to strengthening your broader security posture.

While we can now certify you at DCC Level 0, many organisations prefer some support getting “assessment-ready” first — and that’s where our broader services come in. Periculo delivers practical, hands-on help with the foundations DCC is built on, including Cyber Essentials and Cyber Essentials Plus, alongside CREST-aligned penetration testing to confirm your controls work in the real world, not just on paper.

We also provide security governance support, such as policy development, risk management, supplier assurance, and incident response planning, and can help you align with wider frameworks like ISO 27001.

These services strengthen your cyber posture, simplify certification, and give you clearer, more evidence for smoother procurement and assurance conversations.

If you have any questions about the Defence Cyber Certification or would like to begin the Level 0 certification process, our team at Periculo is ready to support you. Contact us below.