25 September 2023

New security Framework locks in Agencies

Start the conversation

The Attorney-General’s Department has released a new Protective Security Policy Framework (PSPF) to assist Australian Government entities protect their people, information and assets at home and overseas.

The new Framework is compulsory for all non-corporate entities subject to the Public Governance, Performance and Accountability Act 2013 (PGPA Act) who are required to apply it as it relates to their risk environment.

Unveiling the new Framework, the Department said the PSPF articulated Government protective security policy while also providing guidance to support the effective implementation of the policy across the areas of security governance, personnel security, physical security and information security.

It said the Attorney-General had reissued the Directive on the Security of Government Business to reflect the new PSPF.

“The Directive articulates the Government’s requirements for protective security to be a business enabler that supports entities to work together securely, in an environment of trust and confidence,” the Department said.

“The Directive establishes the PSPF as a policy of the Government, which non-corporate Commonwealth entities are required to apply as it relates to their risk environment.”

The Department said the PSPF consists of five principles that apply to every area of security; four outcomes that outline the desired end-state results; 16 core requirements that articulate what entities must do to achieve the Government’s desired protective security outcomes; and guidance on how the PSPF requirements can be delivered.

It said that most of the core requirements came with a number of supporting requirements intended to facilitate a standardised approach to implementing security across Government.

“Non-Government organisations that access security classified information may be required to enter into a deed or agreement to apply relevant parts of the PSPF for that information,” the Department said.

“State and Territory Government Agencies that hold or access Commonwealth security classified information apply the PSPF to that information consistent with arrangements agreed between the Commonwealth, States and Territories,” it said.

The new online Framework can be accessed at this PS News link.

Start the conversation

Be among the first to get all the Public Sector and Defence news and views that matter.

Subscribe now and receive the latest news, delivered free to your inbox.

By submitting your email address you are agreeing to Region Group's terms and conditions and privacy policy.