Most organisations have no idea what their real GNSS exposure is — because nobody has measured it. A vulnerability assessment is an independent, on-site survey and risk report that tells you exactly where you stand and what to do about it.
GNSS signals — GPS, Galileo, GLONASS and BeiDou — are extremely weak by the time they reach the ground. A jammer costing under £50, operated within a few kilometres, can deny positioning across a whole logistics park, terminal or rail corridor. Spoofing goes further, injecting false positions without tripping any alarm. UK road and maritime incidents are rising, and both Ofcom and the NPSA flag GNSS interference as a priority threat to critical infrastructure.
Cost of a jammer that can deny GNSS across an entire site.
GNSS bands surveyed for interference, noise and anomalies.
Often the hidden dependency — telecoms and data-centre clocks rely on GNSS.
Every assessment uses calibrated spectrum analysis and GNSS monitoring, carried out on site — not subcontracted, not desk-based.
Identifying every system on site that relies on GNSS — directly or through timing infrastructure. Many organisations underestimate how deep that dependency runs.
Spectrum survey of the L1, L2 and L5 GNSS bands at representative points across the site, identifying existing interference, elevated noise floor or anomalous signals.
Assessment of geometric exposure — line of sight to roads and public areas, antenna placement, and the signal levels a realistic threat device would need to achieve denial.
Review of whether on-site receivers and system architecture would detect or respond to a spoofing event, and what authentication or cross-checks are in place.
A structured report suitable for a board, compliance team or insurer — risk-rated vulnerabilities, the evidence base, and prioritised mitigation recommendations.
Vendor-neutral recommendations — detection monitoring, antenna hardening, resilient timing alternatives — with no product being sold to you.
Organisations subject to the Network and Information Systems (NIS) Regulations 2018 have a duty to identify and manage risks to the systems they operate. GNSS dependency is a frequently overlooked part of that risk picture.
Written assessment (PDF), site dependency map, annotated spectrum captures, a risk register with severity ratings, prioritised mitigations, and an executive summary for board or insurer submission.
The assessment is vendor-neutral. There is no tracker, receiver or monitoring product being pushed — which is exactly why the findings carry weight with a board, a compliance team or an insurer.
Conducted by an RF engineer with direct, hands-on understanding of how GNSS jamming and spoofing actually work — not an academic checklist.
Operators of essential services must take appropriate security measures and report significant incidents. Currently being strengthened by the Cyber Security and Resilience Bill progressing through Parliament.
The National Protective Security Authority publishes guidance on position, navigation and timing (PNT) resilience for critical infrastructure.
The Civil Aviation Authority issues safety notices on GNSS radio-frequency interference affecting operations (current notice SN-2025/006, superseding earlier guidance).
The UK's position, navigation and timing policy framework treats GNSS resilience as a national infrastructure priority.
Ofcom has powers to investigate and prosecute GNSS jamming; using or supplying jamming equipment is a criminal offence.
An independent RF consultant and electronics engineer with over 40 years' experience across defence electronics, RF systems design and interference investigation, and director of K9 Electronics Ltd, a UK defence electronics manufacturer working in GNSS and counter-UAS under UK export control licensing. That background gives an unusually direct understanding of how GNSS jamming and spoofing work in practice. Assessments are provided as an independent consultancy service, separate from any product interest. Based in the East Midlands, covering the whole UK, with ready access to London and the South East.
Assessments are typically completed within two to three weeks of instruction, with the report delivered within five working days of the site visit.