Compliance with the 2017 ISM Protective Marking Controls

The use of security protective markings as an effective means to maintain data confidentiality and prevent data leakage is well established in national government circles, especially when dealing with hardcopy material.  These same principles can also be applied to electronic information.  

The 2017 Information Security Manual (ISM) Controls states that ‘As for paper-based information, all electronic-based information needs to be marked with an appropriate protective marking. All information must be classified in a manner consistent with the Australian Government security classification system’ and this applies to ‘All Departments, Statutory Bodies and Shared Service Providers’.

Organistions who have entered into a Deed of Agreement with the Australian Government to handle sensitive and classified information are required to adhere to the standards of the ISM. 

For some businesses, this requires the application of protective marking controls.

The ISM 2017 has been updated 

The ISM 2017 has been updated in March 2019 and we are in the process of updating the Compliance Checklist and Whitepaper. If you have a query you'd like answered, please call or email us.