Essential 8
Our Essential 8 assessors use outputs from an ICT assessment to create a roadmap to meet the following eligibility and suitability requirements for your required DISP security level.
Essential 8
Application Whitelisting
Only allow approved applications to run on systems to prevent the execution of malicious or unauthorised software.
Patch Applications
Keep software applications up to date with the latest security patches to minimize vulnerabilities that could be exploited by attackers.
Configure Microsoft Office Macro Settings
Disable or restrict the use of Microsoft Office macros, which are commonly abused by attackers to deliver malware.
User Application Hardening
Configure web browsers and email clients to block or warn against potentially malicious websites, attachments, and scripts.
Restrict Administrative Privilege
Limit administrative privileges to only authorized users who need them, reducing the potential impact of compromised accounts.
Patch Operating Systems
Regularly apply security patches and updates to operating systems to address known vulnerabilities.
Multi-Factor Authentication (MFA)
Require the use of MFA for accessing sensitive systems and information to add an extra layer of security beyond passwords.
Daily Backups
Regularly back up important data and verify the integrity of backups to ensure critical information can be restored in the event of data loss or ransomware attacks.