Latest publications 31 Oct 2025 Microsoft Exchange Server security best practices This paper—authored by the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), and Canadian Centre for Cyber Security (Cyber Centre)—provides security best practices for administrators on hardening on-premises (on-prem) Exchange. 30 Oct 2025 Cyber security priorities for boards of directors 2025-26 This advice outlines questions boards can ask of management and their organisation to understand its cyber security posture in the current cyber threat environment. 28 Oct 2025 Creating and maintaining a definitive view of your operational technology architecture How organisations who deploy or operate operational technology systems should build, maintain and store their systems understanding. All publications Title AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 23 Oct 2025 Investing in modern defensible architecture The Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and international partners present this guidance to help organisations develop an MDA investment roadmap based on their organisational strategy, business and security objectives, risk profile and threat context. 20 Oct 2025 Cloud shared responsibility model: Guidance for individuals and small and medium businesses This publication is for individuals and small and medium businesses that use or plan to use a cloud service. It explains what the shared responsibility model (SRM) is, and how responsibility for cloud security is shared between you and the cloud service provider (CSP). 20 Oct 2025 Cloud shared responsibility model: Executive guidance This publication is for executives with cyber security responsibilities in government entities, critical infrastructure and large organisations that use or plan to use a cloud service. This guidance aims to strengthen your understanding of the shared responsibility model (SRM), and potential impacts to your cyber security posture and your governance obligations. 16 Oct 2025 Artificial intelligence and machine learning: Supply chain risks and mitigations This guidance is intended for organisations and staff that deploy or develop AI or ML systems and components. 15 Oct 2025 Mitigations for network defence This guidance provides actions for both executives and technical staff to strengthen their organisation’s network infrastructure. 13 Oct 2025 CI Fortify Actionable guidance for CI operators to isolate and rebuild critical services and OT systems during crisis or service disruption. Pagination Previous page ‹‹ Page 2 Next page ›› Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary