The Australian Cyber Security Centre (ACSC) has released its updated Australian Government Information Security Manual (ISM), offering cyber security advice to businesses, industry and government.

The manual represents the ACSC’s knowledge of best practice cyber security measures based on their experience in responding to cyber security incidents within Australia. Industry and government advisors were consulted about the proposed changes to the 2018 document.

Moving towards a more risk-based approach from a previously compliance-based regime, the 2018 release gives organisations greater flexibility to manage their cyber security based on their own unique circumstances.

The Head of the ACSC, Alastair MacGibbon, said the ISM is the Australian Government’s flagship document in supporting organisations to protect their information and ICT systems.

“The ISM is updated regularly to make sure people are best equipped to tackle the security risks associated with prevailing cyber threats,” MacGibbon said. “You’ll see the document has been streamlined, to remove duplication and make it easier to use.”

“What hasn’t changed is each organisation’s responsibility to protect their people, information and assets.”

The guidelines discuss both governance and technical concepts in order to support the protection of organisations’ information and systems and are intended for Chief Information Security Officers, Chief Information Officers, cyber security professionals and information technology managers.

The 2018 Australian Government Information Security Manual is available online here. 

More from The Business Conversation:

Hackers cost Aussie businesses $2.8m in 2018 to date

Calculate the benefits of workplace flexibility on your bottom line

Glue Store anti-theft trial cuts shrink by 72%