Guidance

Industry Security Notice (ISN)

A list of Industry Security Notices (ISNs) for defence personnel to highlight security changes or information.

Documents

Electronic Movement of OFFICIAL-SENSITIVE MOD Information

This file is in an OpenDocument format

National Security Vetting and Social Networking Sites

Release of JSP 440 to Industry

This file may not be suitable for users of assistive technology.

Request an accessible format.
If you use assistive technology (such as a screen reader) and need a version of this document in a more accessible format, please email ddc-modinternet@mod.gov.uk. Please tell us what format you need. It will help us if you say what assistive technology you use.

Secure by Design Requirements

Business Continuity and Resilience

Encryption of MODII at rest

DART: risk balance case process

Definition of MOD Identifiable Information

Guidance on securing technology at OFFICIAL

Marking of MOD commercial information

Defence Trade Cooperation Treaty (DTCT)

Defence Trade Cooperation Treaty (DTCT): application form

Social networking

National security vetting and government contracting policy

Personal data handling

Details

A Industry Security Notice (ISN) is an official document that tells people in industry about important instructions, guidance or other information relating to security.

Important notice

  • ‘ISN 2014/04 Farnborough International Air Show 2014: exhibition clearances’ has been removed
  • ‘ISN 2014/01: Government Security Classification Scheme’ updated April 2014
  • ‘ISN 2011/05 Defence & Security Equipment International (DSEi) 2011: exhibition clearances’ has been removed
  • ‘ISN 2011/02: incident report’ has been superseded by ‘2011/07: incident reporting’
  • ‘ISN 2011/03: Nato personnel security clearances’ has been superseded by ‘2014/03: Procedure for UK contractors to obtain Nato personnel security clearances’
Published 7 September 2010
Last updated 179 JanuaryFebruary 2023 + show all updates
  1. Added: ISN 2023/04 Electronic Movement of OFFICIAL-SENSITIVE MOD Identifiable Information.

  2. 'Control and procedures for effective system patching and update' updated.

  3. Added 'MOD Facility Security Clearance (FSC) policy and guidance for UK Defence contractors and MOD Contracting Authorities'.

  4. Updated ISN 2023/01 'Security Aspects Letters and Contractual Security Conditions'.

  5. 'Security Aspects Letters and Contractual Security Conditions' added.

  6. Added 'Control and procedures for effective system patching and update'.

  7. 'Ongoing Personnel Security Requirements for Defence Contractors – Aftercare Responsibilities' updated.

  8. 'Ongoing personnel security requirements for defence contractors - aftercare responsibilities' updated.

  9. 'Electronic Movement of OFFICIAL-SENSITIVE MOD Information' updated.

  10. Updated Electronic Movement of OFFICIAL-SENSITIVE MOD Information.

  11. Updated 'Clarification on requirements for remote working with MOD material'.

  12. Updated ISN Clarification on requirements for remote working with MOD material.

  13. Added: Industry Security Notice: Requirement to report security incidents affecting MOD material to the MOD. Removed: ISN 2011/07 (Incident Reporting).

  14. Removed as the content contained within all of these ISNs has been superseded by new policy and guidance: Update to the Defence Cyber Protection Partnership’s (DCPP) Risk Assessment and Supplier Assurance Questionnaires, Introduction of Verify to the cyber security model and risk management guidance, Requirement to report security incidents affecting MOD material to the MOD, Defence industry WARP CANNEL state notification, MOD basic grade messaging (email) address routing changes, MOD implementation of cyber essentials scheme, Government security classification scheme: update, Government Security Classification Scheme, Government Security Classification Scheme (updated April 2014), Industry Supplier Guidance on DEFCON 658 (Flow - Down) – Amended.

  15. Added ISN Electronic Movement of OFFICIAL-SENSITIVE MOD Information and ISN Subcontracting or Collaborating on Classified UK MOD Programmes.

  16. Added Industry Security Notice: Defence Industry WARP Change of Ownership and Contact Details.

  17. Added National Security Vetting and Social Networking Sites ISN 2022/06.

  18. Addition of 'Release of JSP 440 to Industry'.

  19. Added: Secure by Design Requirements.

  20. Added ISN 2022/04: Design Requirements.

  21. Added: Arrangements for the Handling and Transmission of Classified and Protected Information Concerning the Canadian Surface Combatant Frigate and UK Type 26 Frigate.

  22. Added: Business Continuity and Resilience

  23. Added: Personnel Security Requirements – Aftercare Responsibilities Related to Providing Accommodation to Foreign Nationals.

  24. Added: Industry Supplier Guidance on DEFCON 658 (Flow - Down) – Amended.

  25. Addition of: Cyber Security Model – Interim Process in support of DEFCON 658.

  26. Addition of: Industry Personnel Security Assurance.

  27. Updated: ISN Encryption Of MODII At Rest.

  28. Added: Compliance with Cyber Security Requirements from Other Nations and Encryption Of MODII At Rest.

  29. Added: Advice on completing the 2021 United Kingdom Census.

  30. Added: Exchange of Classified Information with the European Union.

  31. Addition of: Canada/UK industrial security arrangement - Arrangements for the Handling and Transmission of Classified and Protected Information.

  32. Addition of: ISN Supplier Guidance on renewal of the Supplier Assurance Questionnaire under DEFCON 658 (Cyber).

  33. Addition of: List V - Industry Personnel Security Assurance.

  34. Addition of: Encryption Of MODII At Rest.

  35. Industry security notice regarding cyber security model and cyber essentials plus certification during COVID-19 isolation added.

  36. Added the Clarification on requirements for remote working with MOD material, ISN 2020/01.

  37. Added Update to the Defence Cyber Protection Partnership’s (DCPP) Risk Assessment and Supplier Assurance Questionnaires.

  38. Updated Australia-UK security arrangement: Arrangements for the handling and transmission of defence classified information which has been amended.

  39. Added: Australia-UK Security Arrangement: Arrangements for the Handling and Transmission of Defence Classified Information

  40. Added Ongoing personnel security requirements for defence contractors - Aftercare responsibilities.

  41. Updated Interpretation of US DFARS clauses in relation to CDI and cyber reporting.

  42. Added Interpretation of US DFARS Clauses in relation to CDI and Cyber Reporting (ISN 2018/04).

  43. Added Introduction of Verify to the Cyber Security Model and Risk Management Guidance.

  44. Added Encryption of removable storage media holding MOD data ISN.

  45. Added ISN 01/18 DART – Risk Balance Case Process.

  46. Added Release of UK OFFICIAL-SENSITIVE and equivalent third party classified material to foreign non-government recipients.

  47. Added Encryption of removable storage media holding MOD data.

  48. Added ISN 03/2017: Requirement to report security incidents affecting MOD material to the MOD

  49. Added Industry supplier guidance on DEFCON 658 (ISN 2017/06) that replaces an earlier version of the guide (ISN 2017/05).

  50. Added Industry supplier guidance on DEFCON 658 (flow-down) ISN 2017/05.

  51. Added industry supplier guidance on DEFCON 658 (cyber).

  52. Added ISN 2017/02 Defence industry WARP CANNEL state notification

  53. Added MOD ICT security accreditation and the defence assurance risk tool (DART).

  54. Updated: Definition of MOD Identifiable Information

  55. Added: Definition of MOD Identifiable Information

  56. Added ISN 2016/04 key email address changes for the Ministry of Defence

  57. Added new ISN 2016/03.

  58. Added new Industry security notice ISN 2016/02.

  59. Added ISN 2016/01.

  60. Added ISN 2015/05.

  61. Added new ISN 2015/04.

  62. Removed out of date notices.

  63. Added ISN 2015/03: Guidance on Security Technology at OFFICIAL.

  64. Added ISN 2015/02: Introduction of the electronic private venture security grading and exhibition clearance processes on SPIRE.

  65. Replaced ISN 2015-01 Marking of MOD Commercial Information with amended version.

  66. Added ISN 2015/01: Marking of MOD commercial information.

  67. Added new ISN 2014/06

  68. Added ISN 2014/05.

  69. Added ISN 2014/04: Farnborough International Air Show 2014: exhibition clearances

  70. Replaced Government Security Classification Scheme with the updated April 2014 file.

  71. Removed 2011/03 which was superseded by 2014/03. Added 2014/02 and 2014/03.

  72. Added ISN 2014/01: Government Security Classification Scheme

  73. First published.