Compliance and Regulatory Solutions
The regulatory and compliance climate is becoming more demanding and complex. Sense of Security has extensive experience assessing organisational policies, procedures, and technical implementations against key local and international industry standards, policy and regulatory frameworks.
These include:
- Payment Card Industry Data Security Standard
- Australian Privacy Act – Australian Privacy Principle 11 – Security of Personal Information
- APRA CPG 234 – Management of Security Risk in Information and Information Technology
- ISO/IEC 27001 – Information Security Management Systems – Requirements
- ISO/IEC 27002 – Code of Practice for Information Security Controls
- ISO/IEC 27003 – Information Security Management System – Implementation Guidance
- ISO/IEC 27005 – Information Security Risk Management
- ISO 22301 – Business Continuity Management Systems – Requirements
- ISO 31000 – Risk Management- Principles and Guidelines
- NIST 800-53 – Security and Privacy Controls for Federal Information Systems and Organizations
- ISM – Australian Signals Directorate – Information Security Manual
- PSPF – Australian Government Protective Security Policy Framework
- IS18 – Queensland Government Information
- NESAF – National eHealth Security and Access Framework
- Australian Government Cyber Security Policy
- New South Wales Government – Digital Information Security Policy
- Victoria Government – Protective Data Security Standards
- Victoria Government – SEC Pol 01 – Information Security Management Policy
- Victoria Government – SEC Std 01 – Information Security Management Framework
- Victoria Government – SEC Std 02 – Critical Information Infrastructure Risk Management
- Victoria Government – SEC Std 03 – Information Security – Penetration Testing
Sense of Security welcomes the opportunity to discuss how our organisation can support your information security documentation needs. Please contact us on 1300 922 923 or complete the enquiry form by pressing the button below.