Latest publications 20 Oct 2025 Cloud shared responsibility model: Executive guidance This publication is for executives with cyber security responsibilities in government entities, critical infrastructure and large organisations that use or plan to use a cloud service. This guidance aims to strengthen your understanding of the shared responsibility model (SRM), and potential impacts to your cyber security posture and your governance obligations. 20 Oct 2025 Cloud shared responsibility model: Guidance for individuals and small and medium businesses This publication is for individuals and small and medium businesses that use or plan to use a cloud service. It explains what the shared responsibility model (SRM) is, and how responsibility for cloud security is shared between you and the cloud service provider (CSP). 16 Oct 2025 Artificial intelligence and machine learning: Supply chain risks and mitigations This guidance is intended for organisations and staff that deploy or develop AI or ML systems and components. All publications Title AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 20 Oct 2025 Cloud shared responsibility model: Executive guidance This publication is for executives with cyber security responsibilities in government entities, critical infrastructure and large organisations that use or plan to use a cloud service. This guidance aims to strengthen your understanding of the shared responsibility model (SRM), and potential impacts to your cyber security posture and your governance obligations. 20 Oct 2025 Cloud shared responsibility model: Guidance for individuals and small and medium businesses This publication is for individuals and small and medium businesses that use or plan to use a cloud service. It explains what the shared responsibility model (SRM) is, and how responsibility for cloud security is shared between you and the cloud service provider (CSP). 16 Oct 2025 Artificial intelligence and machine learning: Supply chain risks and mitigations This guidance is intended for organisations and staff that deploy or develop AI or ML systems and components. 15 Oct 2025 Mitigations for network defence This guidance provides actions for both executives and technical staff to strengthen their organisation’s network infrastructure. 13 Oct 2025 CI Fortify Actionable guidance for CI operators to isolate and rebuild critical services and OT systems during crisis or service disruption. 22 Sep 2025 Planning for post-quantum cryptography A cryptographically relevant quantum computer (CRQC) will render most contemporary public key cryptography insecure, thus making ubiquitous secure communications based on current public key cryptography technology infeasible. As the creation of a CRQC presents new cyber security risks, organisations are encouraged to consider anticipating future requirements and dependencies of vulnerable systems during the transition to post-quantum cryptography (PQC) standards. Pagination Page 1 Next page ›› Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary