The Australian Signals Directorate’s Australian Cyber Security Centre (ACSC) has updated its Australian Government Information Security Manual (ISM) which helps organisations protect their systems and information from cyber threats.
Updated monthly, the ISM is created primarily for Chief Information Security Officers and other cyber security professionals, keeping them up-to-date on current cyber security risks.
In a statement, the ACSC said the manual was based on a set of foundational cyber security principles centred on four key activities: Govern, protect, detect and respond.
“These principles set the strategic framework for protecting an organisation’s systems and information from cyber threats,” the ACSC said.
“The principles represent part of the continual effort over the last 12 months to transition the ISM from a compliance-based information security manual to a principles-based cyber security framework that organisations can apply…to protect their systems and information from cyber threats.”
ACSC said that with the release of the updated principles, Government, industry and academia were strongly encouraged to consider the strategic guidance they provided when designing and implementing new systems and services.
“The ISM also contains various cyber security guidelines covering governance, physical security, personnel security, and information and communications technology security,” the Centre said.
“These guidelines assist and empower organisations to identify cyber security risks and select appropriate security controls to effectively manage these risks.”
The 179-page ISM can be accessed on the Australian Signals Directorate’s website at this PS News link.
