MSP Compliance Frameworks

The Australian Energy Sector Cyber Security Framework (AESCSF) is the result of a collaborative effort between several government and industry stakeholders. This framework is designed to ensure the highest level of security, making it a standard for IT risk management in the energy sector.

Australian organizations of all sizes must defend themselves against malicious cyber threats. To assist organizations with this, the Australian Cyber Security Centre (ACSC) created the Essential Eight. These eight best practices ensure a baseline of key mitigation strategies defined by ACSC's Strategies to Mitigate Cyber Security Incidents, making it a must-have offering for MSP's with clients in Australia.

This Prudential Standard is designed to help ensure that APRA-regulated entities can safeguard themselves against information security incidents (including cyberattacks) using risk and compliance software. Compliant MSPs and clients must maintain information security that matches the threat posed by digital vulnerabilities.

The Protective Security Policy Framework (PSPF) outlines the Australian Government's protective security policy. It provides guidance on how to effectively implement the policy in four key areas: personnel, physical, governance, and information security. With the PSPF, government organizations can ensure effective security measures aided by compliance monitoring software.

The New Zealand Information Security Manual provides essential controls and processes necessary for protecting all New Zealand Government information and systems. The manual also provides additional controls to help MSPs exceed the minimum acceptable baseline levels for themselves and their clients.