planning
Basic Capability
We are in the early stages of developing our capability and have improvements to make. We likely:
- Aim to keep data secure but have limited formal controls covering people, processes and technology
- Have firewall and antivirus protection, but it isn’t centrally managed or monitored
- Have few IT security policies.
Intermediate Capability
We have the fundamentals under control to protect our information, but further improvements are possible. We likely:
- Have implemented most of the ACSC’s Essential 8 security protections
- Educate staff about where information should be stored based on what type of data it is – sensitive, confidential, public etc
- Securely encrypt and password-protect all devices that store sensitive information (such as client data)
- Centrally manage and monitor network firewalls
- Have approved security policies that staff understand and follow.
Advanced Capability
Our security protections work very well, deliver value and support us to achieve our mission. We likely:
- Have been independently assessed and confirmed as compliant against an information security standard
- Have a system that collects and analyses security information from all devices and accounts, identifying risks and appropriate actions
- Regularly reinforce security education so that staff consider security a key responsibility
- Undertake compliance testing to identify issues assess their risk and prioritise appropriate remedial action.
How ready are you?
Spend a few minutes to know how ready your organisation is to move to the cloud. This will help you understand what materials below will be on most valuable as you chart your own path to digital transformation.
Need More Expertise?
We have experts who can give you more tailored advice. Book now for a 30-min session to get key questions answered.
Lessons learnt in cyber security
How one organisation became a victim of a sophisticated cyber-crime. Hear their lessons learnt to make sure you are not next.
Basic
()
Guide
Cyber security: What it is and why it matters
The basics on why it's so important to protect your organisation's information.
Guide
Why cyber security is so important
An overview of why cyber security protection is a must for every organisation.
Guide
What do we mean by ‘IT management’?
IT management covers digital technology initiatives at a strategic level. It helps you plan effectively, manage digital technology projects and budgets, and get staff and executive buy-in.
Training
Digital transformation /IT strategy course
If your organisation needs help planning for digital technology investment into the future, look no further than webinars presented by Connecting Up.
Guide
Develop your digital technology assets register
A digital technology assets register can help with your decision making, planning and budgeting.Intermediate
()
Guide
Planning your online communications
How to identify your target audience, your goals, key messages and channels, and then make a plan.
Guide
Achieving intermediate cyber security
How to plan for and implement a road map to intermediate-level protection from cyber attacks.
Guide
Best-practice cyber security governance
An overview of how to incorporate cyber security policies and governance into your organisational processes.
Guide
Privacy guidelines for not-for-profits
Download these privacy guidelines for detailed advice on how to protect your organisation's data.
Guide
DIY end user security policy
Download a high quality end user security policy template that you can adapt to your organisation's needs.
Guide
Resourcing to meet your digital technology/IT needs
Achieving your technology and IT goals requires resourcing, which begins with identifying your needs and solutions.Advanced
()
Guide
Achieving advanced IT management
What constitutes advanced IT management (digital strategy and governance) and what to do to get there.
Guide
Achieving advanced cyber security
How to plan for and implement a road map to advanced-level protection from cyber attacks.
Guide