About the PSR
ABOUT004
Core policies of the PSR
The PSR’s core policies cover four key areas: security governance, personnel security, information security, and physical security.
All organisations should comply with the requirements in the core policy areas listed below.
Security governance
GOV 1 — Establish and maintain the right governance
GOV 2 — Take a risk-based approach
GOV 3 — Prepare for business continuity
GOV 4 — Build security awareness
GOV 5 — Manage risks when working with others
GOV 6 — Manage security incidents
GOV 7 — Be able to respond to increased threat levels
GOV 8 — Assess your capability
Personnel security
PERSEC 1 — Recruit the right person
PERSEC 2 — Ensure their ongoing suitability
PERSEC 3 — Manage their departure
PERSEC 4 — Manage national security clearances
Information security
INFOSEC 1 — Understand what you need to protect
INFOSEC 2 — Design your information security
INFOSEC 3 — Validate your security measures
INFOSEC 4 — Keep your security up to date
Physical security
PHYSEC 1 — Understand what you need to protect
PHYSEC 2 — Design your physical security
PHYSEC 3 — Validate your security measures
PHYSEC 4 — Keep your security up to date
Page last modified: 5/08/2019