Local and State Government requirements for information security have grown exponentially over recent years. With the increased threat of a cyber attack impacting operations, Government Agencies and Councils have established key strategies to enhance cyber security.
Governments are recognising the benefit of implementing cyber security from a risk perspective, ensuring that the required controls are appropriate to their environment and provide a higher return on investment over time.
ISD Cyber has worked with a number of Councils and Government Agencies to help refine IT Strategies, establish Cyber Security Plans and conduct System Risk Management Plans (SRMP). In addition, ISD Cyber have assessed compliance and maturity against standards such as ISO 27001, NIST, the Essential Eight, ISM, PSPF and regional standards such as the South Australian Cyber Security Framework (SACSF) and NSW Cyber Security Policy.
Not only are Government Agencies and Councils enhancing their own cyber security strategies, they are also encouraging third parties to safeguard their business, focusing on the supply chains within which they operate, and the customers they serve through implementation of the Essential Eight. As such, we are also able to assist companies that offer services to Government.
ISD Cyber has conducted information security risk assessments, gap analysis reviews (against ISO 27001, the Essential Eight and ISM) and assisted in the implementation of certifiable Information Security Management Systems (ISMS) for companies that have specific cyber security and contractual obligations. Such obligations include the DESE Right Fit For Risk (RFFR) Scheme which is mandatory to all providers of employment skills training and disability employment services.