The Managed Service model for supply chain compliance is by no means a new concept, as defence sub-contractors can today acquire an ‘accredited’ laptop pre-configured to connect to MOD systems for an annual fee. However with the increased adoption of cloud technologies across defence, and the increasing maturity of cloud automation and security, combining the Device as a Service (DaaS) model with the appropriate use of cloud services has far wider potential. As compliance requirements for the relevant defence standard (DEFSTAN 05-138) flows down through the supply chain, proven cloud and DaaS infrastructure provides significant potential, both for SMEs needing a cost-effective and quick route to compliance, as well as defence authorities looking to reduce the complexity and overhead of assurance and supplier risk assessment.