DISP Suitability Assessment
By : 6clicks
This Assessment Template includes the DISP Suitability Requirements from Annex B of the DSPF.
In stock
Details
This Assessment Template includes the DISP Suitability Requirements from Control 16.1 – Annex A of the DSPF.
The suitability requirements (Control 16.1 – Annex A) are divided into four categories of Security Governance, Personnel Security, Physical Security, and Information & Cyber Security, depending on the level of membership required (Entry Level, Level 1, Level 2 and Level 3).
At a high level the requirements include things like:
- Establishing a system of risk oversight and management
- Ensuring your nominated CSO and SO are able to meet relevant security clearance requirements
- Completion of the Defence SO training by the CSO and SO
- Completion of employment screening and an annual security awareness course by all relevant personnel
- Management of personnel/facilities and information & cyber security at the relevant level
- Maintaining and implementing security policies and plans including an insider threat program
Information and cyber security
For information and cyber security specifically, you will need to meet one of the following standards:
- ASD Essential 8
- ISO/IEC 27001 and its Annex A
- US NIST SP 800-171
- UK Def Stan 05-138
Ongoing suitability requirements
Ongoing suitability requirements include:
- safeguarding Defence and industry people, information and assets
- complying with the DSPF and in turn the ASD E8, ISM and PSPF where applicable
- retaining a CSO and SO
- reporting any changes that may affect DISP membership
- complying with audit and assurance activities
- keeping a register of overseas travel and travel briefings
- reporting security incidents and foreign contacts to Defence
More Information
Jurisdiction | Australia |
---|---|
Type | Assessment |