The Protective Security Framework (PSPF)
The Protective Security Policy Framework (PSPF) has been developed to assist Australian Government entities to protect their people, information and assets, at home and overseas.
The PSPF provides policy, guidance and better practice advice for governance, personnel, physical and information security. The 36 Mandatory Requirements assist Agency Heads to identify their responsibilities to manage security risks to their people, information and assets.
Non-corporate Commonwealth entities are required to apply the PSPF as it relates to their risk environment. It is best practice to do this through a security risk management approach, with a focus on fostering a positive culture of security within the entity and across the Australian Government.
Each individual Commonwealth entity is in the best position to assess their own risk environment and apply relevant and proportionate security controls in support of Australian Government resources.
The PSPF document map is designed to assist users of the PSPF to understand the relationships between protocols, guidelines and better practice guides that support the PSPF governance arrangements and core policies.