The Administrative Arrangements Order of 3 August 2023 transferred responsibility for protective security policy, including the Protective Security Policy Framework, to the Department of Home Affairs from the Attorney-General’s Department. These Machinery of Government (MOG) changes commenced on 4 August 2023.

Security of government business

The PSPF as Australian Government policy

The former Attorney-General, the Hon Christian Porter, issued the Directive on the Security of Government Business in October 2018 as part of updates to the Protective Security Policy Framework. This has been recertified in October 2023 by the current Minister for Home Affairs and Minister for Cyber Security, The Hon Clare O'Neil MP, to reaffirm this commitment to the secure delivery of Government business.

Directive on the Security of Government Business

The Australian Government is committed to ensuring the secure delivery of government business and continuing to build trust and confidence in our ability to engage with and manage security risks.

To achieve ongoing and effective delivery of government business, I expect accountable authorities to meet the four security outcomes set out in the Protective Security Framework.

Entities realise the Protective Security Policy Framework's outcomes by implementing the framework's requirements and using security measures proportionately to address their unique security risk environments.

Security is everyone's business and I encourage Australian Government personnel to develop a comprehensive understanding and appreciation of the importance of a positive security culture embedded across the entity.

The Australian Government, through my department with oversight of the Government Security Committee, will continue to assess emerging security risks and develop and refine protective security policy that promotes efficient secure delivery of government business.

Minister for Home Affairs and Minister for Cyber Security