Sorry, you need to enable JavaScript to visit this website.
Skip to main content


Book image 3

Australian Government Information Security Manual (ISM)

May 17, 2019 - The Australian Cyber Security Centre (ACSC) within the Australian Signals Directorate (ASD) produces the Australian Government Information Security Manual (ISM) . Purpose The ISM helps organisations use their risk management framework to protect information and systems from cyber threats. The cyber security guidelines within the ISM are based on the experience of the ACSC within ASD…

New approach to support cyber security

Dec 4, 2018 - The updated Australian Government Information Security Manual (ISM) has been released by the Australian Cyber Security Centre (ACSC). The 2018 release supports a move towards a risk-based approach that gives organisations greater flexibility to manage their cyber security based on their own unique circumstances, enabling greater innovation within Government. The ISM is an important source of cyber security advice to…
Information security evaluation

Australasian Information Security Evaluation Program (AISEP)

Jul 10, 2018 - The Australasian Information Security Evaluation Program (AISEP) evaluates and certifies ICT products for use in Australian and New Zealand government agencies to protect official information and communications systems. The results of successful evaluations are published on the Evaluated Products List (EPL) and the internationally-recognised Common Criteria (CC) Portal. . What the AISEP provides…

What is the ISM and how is it related to the EPL?

Jul 1, 2018 - The Australian Government Information Security Manual (ISM) provides policies and guidance on security controls to Australian Government agencies on how to protect their ICT systems. It provides guidance on selecting ICT security products from the EPL. .

What is the historical EPL and where can I find it?

Jul 1, 2018 - The historical EPL contains certified products that were previously listed on the EPL. .
IT Security

Submitting ICT security products for evaluation

Jul 1, 2018 - If you are an industry consultant or a product developer and would like your product evaluated, use the following checklist: Step 1 Conduct background research on government agency security needs through the Australian Government Information Security Manual (ISM) and/or the NZ ISM For an AISEP evaluation, refer to the AISEP publications to understand the management and operations of the AISEP. Step 2 Contact Australian…

2018 - Launching into action

Jul 1, 2018 - Working from new purpose-built headquarters after its official launch in August, the ACSC and its network of Joint Cyber Security Centres (JCSCs) across the country are building on decades of quiet success by Australian agencies. The ACSC, part of the Australian Signals Directorate (ASD), demonstrates the Australian Government's commitment to cyber security in a world where new threats are always emerging. 'From the…

What is NZ ISM and how is it related to the EPL?

Jul 1, 2018 - The New Zealand Information Security Manual (NZ ISM) provides policy and guidance for New Zealand government agencies. .