The Protective Security Policy Framework (PSPF) sets out Australian Government policy across six security domains. It prescribes what Australian Government entities must do domestically and internationally to protect their:
- people
- information
- resources.
Application of the PSPF assures government that entities are:
- implementing sound and responsible protective security practices
- identifying and mitigating security risks and vulnerabilities.
We review the PSPF annually to ensure it reflects the current threat environment. We consult with entities on proposed updates through the Government Security Committee. Each review cycle ends with an annual release.
PSPF Release 2025
PSPF Release 2025 – List of Requirements
Overview
This spreadsheet details the mandatory requirements in PSPF Release 2025. It also includes the reporting question type assigned to each requirement.
The Excel spreadsheet version of this list is available to government personnel on the Protective Security Policy GovTEAMS community.
PSPF Release 2025 – Summary of Changes
Overview
This document summarises the updates made between PSPF Release 2025 and PSPF Release 2024.