CYBER SECURITY SERVICE
CYBER SECURITY CENTRE
ESSENTIAL 8
AUSTRALIAN
8
Cyber security threat has the potential to both disrupt the business, and also cause reputational damage to the organisation
What is the Essential Eight?
Essential Eight is eight essential mitigation strategies developed by the Australian Cyber Security Centre (ACSC) to help organisations create a baseline mitigation strategies for cyber security threats.
​
The ACSC developed its Essential Eight for businesses and government, using knowledge gained while carrying out vital work protecting the Australian Government. The Essential Eight help organisations build sound cyber resilience with a list of strategies and baseline to help protect your business against cyber-attacks.
Many companies struggle with their cyber-security posture. The ACSC's risk-based approach and prioritised controls are world-class, equating to a cost-effective and intelligent use of corporate security budgets, helping organisations that have arrived at a start of awareness progress to taking definitive action.
DC9 is an ACSC partner with the expertise and knowledge to help protect your business and build a security strategy based on the Essential Eight. We offer security assessments and Essential Eight audits to help identify the gaps in your security posture.
Essential eight security control
The Essential Eight Framework is a prioritised list of controls that can assist organisations in protecting their systems against a range of adversaries.
​
ACSC research suggests the eight controls can mitigates upto 85% of cyber attacks and recognised as critical to cyber resilience. These controls can be grouped into three categories:
​
-
Attack prevention
-
Limit attack impact
-
Recover data and system availability.
​
While no single mitigation strategy is guaranteed to prevent cyber security incidents, organisations are recommended to implement eight essential mitigation strategies as a baseline. This Baseline makes it much harder for cyber threats to compromise systems.
​
​
Maturity model
As a baseline organisations should aim to reach Maturity Level Three for each mitigation strategy.
If an organisation requires a maturity level above that of Maturity Level Three, DC9 with ACSC will provide tailored advice to meet the specific needs of the organisation.
Maturity Level One
Partly aligned with the intent of the mitigation strategy.
Maturity Level Two
Mostly aligned with the intent of the mitigation strategy.
Maturity Level Three
Fully aligned with the intent of the mitigation strategy.
Ready to develop and implement and Essential Eight Strategy?
Implement Essential Eight
Implementing the Essential Eight strategy may seem like a daunting task, your organisation may have already completed a few of the elements, while others may be in the pipeline or yet to be considered.
​
Don't worry, you are not alone! We have helped many organisation from various stages of implementing the Essential Eight. We help organisation stay on top of cybersecurity threats by focusing the conversation on risk management. We work closely with your stakeholders and provide service to realise your information security goals.
​
​
Beyond Essential Eight
Effective cyber resilience extends beyond the Essential Eight controls, our comprehensive security framework helps you build a complete defence strategy. In addition to the compliance that Essential Eight brings, we help organisations build a security framework that protect, detect, respond and recover from cyber security incidents.
