BETAThis is a self-assessment tool. Results are stored locally in your browser and are never sent to a server.

NCSC CAF v4.0 Self-Assessment

Assess your organisation's cyber security posture against the full NCSC Cyber Assessment Framework v4.0 — all 4 objectives, 14 principles and 38 Indicators of Good Practice.

Import a saved assessment

Load a previously exported JSON file to continue an assessment or view results.

About this tool

  • Covers all 38 IGPs across 4 objectives and 14 principles of CAF v4.0
  • Progress is automatically saved to your browser — no account needed
  • Export your assessment at any time as a JSON file for sharing or backup
  • No data is sent to any server — everything stays on your device