About this guide
This better practice guide aims to help Western Australian (WA) public sector entities better manage cyber security threats to their critical infrastructure1. The guide focuses on better practice principles to safeguard critical operational technology (OT) and has been informed by this Office’s recent audit work on this topic.
This is not intended to be an exhaustive document. Further guidance is available from the Cyber and Infrastructure Security Centre2 and relevant standards. Some security standards are referred to in the Security of Critical Infrastructure Rules3 and include the:
- Australian Standard for Information Security AS ISO/IEC 27001:2015
- Essential Eight4 controls developed by the Australian Signals Directorate
- National Institute of Standards and Technology Framework for Improving Critical Infrastructure Cybersecurity
- Cybersecurity Capability Maturity Model by the Department of Energy of the United States of America
- 2020‑21 AESCSF Framework Core by the Australian Energy Market Operator.
Views: 0
