There are two routes to finding suppliers.
The first route offers services that have been assured by the National Cyber Security Centre (NCSC). All suppliers on this route have cyber security expertise in services that have been independently assessed against the NCSC standards of what “good” should look like for each particular area of cyber security.
The second route also offers services without NCSC assurance. It is the Buyers responsibility to determine whether the service offered is fit for purpose.