Skip to main content

The Administrative Arrangements Order of 3 August 2023 transferred responsibility for protective security policy, including the Protective Security Policy Framework, from the Attorney-General's Department to the Department of Home Affairs. These Machinery of Government (MOG) changes began on 4 August 2023.

The PSPF Reporting Portal will transfer to the Department of Home Affairs on 11 June 2024. Before 11 June 2024, all entities and users must set up new authentication credentials through VANguard. You can get more information by contacting the Government Protective Security Policy section at or the PSPF hotline on 02 5127 9999.

Significant security incident reporting template

  • Fact sheets
Publication date
Last updated

Requirement 2 of PSPF policy 5: Reporting on security mandates that entities must report any significant or reportable security incidents to the relevant authority or affected entity. This includes reporting to the Department of Home Affairs.

A significant security incident is a deliberate, negligent or reckless action that leads, or could lead to, the loss, damage, compromise, corruption or disclosure of official resources. A significant security incident can have wide ranging and critical consequences for the entity and the Australian Government.

The Department of Home Affairs encourages entities to report significant security incidents to the Department of Home Affairs via the PSPF online reporting portal.

If you are unable to report via the PSPF online reporting portal, please complete the form below and send to If the completed form is classified SECRET or above, please contact the PSPF Hotline on (02) 5127 9999 for advice on submitting.