Australian Government - Attorney-General's Department

Security Policy

Achieving a Just and Secure Society

Skip breadcrumbHome

The Protective Security Policy Framework (PSPF)

The PSPF has been developed to assist Australian Government entities to protect their people, information and assets, at home and overseas.

The PSPF provides policy, guidance and better practice advice for governance, personnel, physical and information security. The 36 mandatory requirements assist Agency Heads to identify their responsibilities to manage security risks to their people, information and assets.

Non-corporate Commonwealth entities are required to apply the PSPF as it relates to their risk environment. It is best practice to do this through a security risk management approach, with a focus on fostering a positive culture of security within the entity and across the Australian Government.

Each individual Commonwealth entity is in the best position to assess their own risk environment and apply relevant and proportionate security controls in support of Australian Government resources.

The PSPF document map is designed to assist users of the PSPF to understand the relationships between protocols, guidelines and better practice guides that support the PSPF governance arrangements and core policies.​

Latest news

PSPF reforms

The Attorney-General's Department in consultation with stakeholder entities reviewed the PSPF in 2016 in response to recommendations from the Independent Review of Whole-of-Government Internal Regulation.

In May 2017, the proposed suite of PSPF reforms were endorsed by the Secretaries Board. The Protective Security Policy Framework transition booklet outlines the current requirements and future reforms for implementation from 1 July 2018.

For Australian Government security advisers, draft policy requirements and supporting guidance is available on the Protective Security Policy GovDex page.

Contact the PSPF team on +61 2 6141 3600 or if you have any queries.