Mitigation

ISM and IRAP

The Australian Information Security Manual (ISM) as maintained by the Australian Cyber Security Centre (ACSC) is a very detailed and comprehensive document.

ISO 27001

ISO 27001 is an international standard. But what is it, and what does it mean? The International Standards Organisation (ISO) adopted and now maintains this standard for an Information Security Management System (ISMS). In this context, a Management System is not like a laptop or server, rather it’s a framework or approach. In short, it is a standardised and high-level (but in places very specific) how-to.

Essential Eight Services

The Essential Eight (E8) is a framework maintained by the Australian Signals Directorate (ASD), and it provides a great path towards an enhanced Cyber Security Posture. The ACSC have determined the top eight attack vectors (and related mitigation strategies) used in the vast majority of compromises.