NSW Government has published the latest NSW Cyber Security Policy following the auditor-general’s review of the public sector last year.
The new policy requires that agencies implement and report against the ACSC Essential 8:
- the Agency’s current maturity levels for each control;
- the Agency’s target maturity levels and target date for each control, based on the Agency’s risk tolerance.
Download a PDF of the policy to see what is required.