Skip to main content

Using the Australian Government Information Security Manual

This chapter of the ISM provides guidance on using the Australian Government Information Security Manual.

The Australian Government Information Security Manual (ISM) outlines a cyber security framework that organisations can apply, using their risk management framework, to protect their systems and information from cyber threats. The ISM is intended for Chief Information Security Officers, Chief Information Officers, cyber security professionals and information technology managers. This chapter contains an executive summary of the ISM and guidance on how to apply a risk-based approach to cyber security, which explains the six steps of the risk management framework that the ISM uses.