Company Profile

Snubnose is an automated compliance evidence collection platform purpose-built for the UK defence supply chain. As DefStan 05-138 Issue 4 and Defence Cyber Certification (DCC) shift from self-assessment to independently audited, evidence-based compliance, thousands of suppliers face weeks of manual evidence gathering. 

Snubnose eliminates that burden. The platform connects to suppliers’ existing tools (Microsoft 365, Entra ID, Intune, vulnerability scanners, firewalls, SIEM platforms, and more) to automatically collect, organise, and verify security evidence across all 144 DefStan controls. A lightweight on-premises agent captures network topology, system configurations, and firewall rules without requiring inbound access. Together, they deliver approximately 72% automation coverage. 

Suppliers get a real-time compliance dashboard showing control status, gap analysis, and evidence timelines. When audit time arrives, one click generates audit-ready export packs (PDF reports, evidence bundles, compliance matrices, and tamper-proof hash chain verification) packaged for DCC assessors, MOD, prime contractors, and JOSCAR.