Latest publications 31 Oct 2025 Microsoft Exchange Server security best practices This paper—authored by the National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC), and Canadian Centre for Cyber Security (Cyber Centre)—provides security best practices for administrators on hardening on-premises (on-prem) Exchange. 30 Oct 2025 Cyber security priorities for boards of directors 2025-26 This advice outlines questions boards can ask of management and their organisation to understand its cyber security posture in the current cyber threat environment. 28 Oct 2025 Creating and maintaining a definitive view of your operational technology architecture How organisations who deploy or operate operational technology systems should build, maintain and store their systems understanding. All publications Title AudienceIndividuals & familiesSmall & medium businessesOrganisations & Critical InfrastructureGovernment Sort by Sort byDate updated (new to old)Date updated (old to new)Title (A-Z)Title (Z-A) Items per page 61218243036424854606672788490200 14 Aug 2025 Foundations for OT cybersecurity: Asset inventory guidance for owners and operators This guidance outlines how OT owners and operators can create and maintain an asset inventory and OT taxonomy, to protect their most vital assets. It includes steps for defining scope and objectives for the inventory, identifying assets, collecting attributes, creating a taxonomy, managing data, and implementing asset life cycle management. 29 Jul 2025 Gateway security guidance package: Overview This page provides an overview of ASD’s Gateway security guidance package. 29 Jul 2025 Gateway security guidance package: Gateway technology guides This guidance is one part of a package of documents that forms the gateway security guidance package. When designing, procuring, operating, maintaining or disposing of a gateway, it is important to consider all the documents from the gateway security guidance package at different stages of governance, design and implementation, and not to consume this guidance in isolation. 29 Jul 2025 Gateway security guidance package: Gateway security principles Guidance written for audiences responsible for the procurement, operation and management of gateways. 29 Jul 2025 Gateway security guidance package: Gateway operations and management This guidance is one part of a package of documents that forms the Australian Signals Directorate (ASD)’s Gateway security guidance package written for audiences responsible for the operation and management of gateways. 29 Jul 2025 Gateway security guidance package: Executive guidance The purpose of this guidance is to inform decision-makers at the executive level of their responsibilities, the appropriate considerations needed to make informed risk-based decisions, and to meet policy obligations when leading the design or consumption of their organisation’s gateway services. Pagination Previous page ‹‹ Page 4 Next page ›› Alerts and Advisories Advice, guidance and publications Reports and statistics News Programs Glossary