What you need to know
Protective Security Requirements – roles and responsibilities
Security practitioners employed by or contracted to agencies play an important role in managing personnel, physical and information security.
The Protective Security Requirements (PSR) outlines the Government’s expectations for managing personnel, physical and information security. It clearly sets out what agencies must and should consider to ensure they are managing protective security effectively.
By implementing the PSR you will:
- better manage business risks
- assure continuity of service delivery
- assure the Government and the public you have appropriate, effective measures in place to protect New Zealand’s people, information and assets.
The PSR provides you with:
- core policy documents that describe the high level mandatory requirements that agencies are required to implement and report against.
- protocols and management requirements that provide further direction on how to meet the mandatory requirements.
What you need to do
Security practitioners are to apply the Protective Security Requirements (PSR) with the understanding it provides pathways for successfully protecting people, information and assets.
As a security practitioner, your responsibilities include:
- developing a strong and sustainable security culture within your agency
- developing agency-specific policy and procedures that comply with the mandatory requirements of the PSR
- reviewing your agency’s protective security management policy and procedures regularly as part of your agency’s approach to risk management and business planning
- reporting to senior management on compliance against the mandatory requirements and agreed risk mitigation plans
- determining specific roles and responsibilities for security across your agency
- providing guidance to your agency head on security matters
- managing and reporting security incidents
- promoting and implementing protective security policy
- providing oversight of agency protective security
Common Questions
Case Studies
-
Risks of making personal information public through social media: a PERSEC, INFOSEC case study
-
Risks of granting security vetting waivers: a PERSEC case study
-
Risks of discussing sensitive information outside the workplace: a PERSEC case study
-
Risks of unauthorised personnel accessing restricted areas and agencies failing to follow physical security plans and procedures: a PHYSEC and PERSEC case study
-
Risks of taking electronic media overseas and not reporting the carrying of protectively marked information: an INFOSEC, PERSEC and PHYSEC case study
-
Email fraud: an INFOSEC case study
-
Security clearances for contractors who have spent time overseas: a PERSEC case study
-
Reporting financial mismanagement and contact with foreign officials: a PERSEC case study
Tools and Templates
-
Generic Security Clearance Briefing
39 KB | doc
-
Security Clearance Transfer Incoming Request
33 KB | doc
-
Security Clearance Transfer Outgoing Request
36 KB | doc
Contact infomation
If you want to know more about the PSR you can contact:
psr@protectivesecurity.govt.nz +64 4 472 6170