Skip to main content

This is a new service – your feedback will help us to improve it.

  1. Guidance
  2. Secure by Design

Secure by Design

What government delivery teams and security professionals need to do to incorporate effective cyber security practices when building digital services and technical infrastructure.

This approach promotes a positive security culture and encourages project teams to make cyber security everyone’s collective responsibility.

About Secure by Design

The purpose of this framework and how it has been developed.

Read More


The scope of this approach and the elements that service delivery teams must meet.

Read More


Foundations required for embedding cyber security practices in digital delivery.

Read More


Recommended practical guidance to help delivery teams meet the principles.

Read More


Details of the rollout plan for affected organisations.

Read More

Further information

The Secure by Design approach will evolve to reflect the needs of government digital services. Your feedback will help us to improve it.

Last update: 25 March 2024