> Skip to content

Home > Products and Services > Policies & Guidelines > Information Security Guideline V1.1

Skip to content. | Skip to navigation

 
Document Actions

Information Security Guideline V1.1

This guideline replaces the previous three Information Security Guidelines, Information Security Risk Management, Examples of Threats and Vulnerabilities and Information Security Baseline Controls, published in June 2003.

It has been produced to assist NSW Government agencies establish and maintain their Information Security Management System (ISMS) in compliance with AS/AZS ISO/IEC 27001:2005 Information technology -Security techniques -Information security management systems - Requirements (ISO 27001). 

The Guideline complements AS/AZS ISO/IEC 27002:2007 Information technology - Security techniques - Code of practice for information security management (ISO 27002  currently 17799:2005) by providing additional guidance on the processes for creating and operating an ISMS. 

This document aims to meet the needs of executives and managers who are accountable for the security of information assets; staff who are responsible for initiating, implementing and or monitoring risk management within their agency; and staff who are responsible for initiating, implementing and or maintaining information security within their agency.

Information Security Guideline V1.1 (576kb) Current Version: February 2007
NSW Government | jobs.nsw
NSW Government | jobs.nsw