We are now consulting with ASD’s Cyber Security Network partners on the evolution of the Essential Eight cyber security framework.
The proposed evolution introduces a new Essentials series, expanding the current framework to give organisations greater flexibility in how they implement cyber security, while still providing a clear path to achieving strong cyber resilience.
About the new Essentials series
Grounded in the Information Security Manual (ISM), the new Essentials guidance will offer prioritised, threat‑informed mitigations for contemporary technology environments, supported by practical tools and clear implementation guidance.
Organisations already using the Essential Eight can expect strong alignment with their existing controls and investments, while new adopters will benefit from established best‑practice guidance.
The evolution of the current Essential Eight guidance will form the first chapter of the series – Essentials for enterprise IT – with additional chapters to follow.
About the consultation
This consultation marks an important step in strengthening Australia’s cyber resilience, ensuring guidance keeps pace with both emerging threats and advances in defensive capabilities.
We are undertaking national consultation with government, industry, regulators and organisations that currently use the Essential Eight.
The feedback from across the community will play an important role in shaping the future development of the Essentials series.
How to participate in the consultation
Consultation on Essentials for enterprise IT is now open via the ASD Cyber Security Partnership Program portal and will run until 12 July 2026.
To submit your feedback, log in to the Partnership Portal.
To find out more about our Partnership Program, visit: cyber.gov.au/partnershipprogram.