Tender

This guide explores effective evaluation tools and processes for understanding supplier risk and embedding cyber resilience in your supply chain during the tendering phase.

Decorative pink banner for cyber security tender stage

In the tender stage, invitations to tender (ITTs, RFPs, RFQs) are released to the market and potential suppliers are evaluated against all requirements, including cyber security requirements. See In this section below for information about the activities specifically related to the Tendering phase.

Tender in the cyber security in the procurement life cycle
This guidance is based on National Cyber Security Centre principles. It is not formal guidance and should not be applied as such. It can be used to have conversations about how the issues raised can be dealt with locally. It does not constitute legal advice and should not be relied upon in that capacity. Independent legal advice should always be sought.