Here you will find a range of resources designed to help government agencies and organisations implement a cyber security program and strengthen their cyber resilience and preparedness. These resources, including guides, templates, and tools are aimed at enhancing cyber security practices and building capability in areas such as risk management, incident response, awareness and training.
The Cyber Security Program Guide along with its supporting tools and templates, assists agencies in developing a program that addresses existing and emerging cyber security risks and supports effective implementation of the SACSF.
Cyber Security Governance:
- TEMPLATE - Agency Security Committee Terms of Reference
- TEMPLATE - Agency Security Working Group Terms of Reference
- TEMPLATE - CSP RACI Matrix
- TEMPLATE - Cyber Security Policy
- TEMPLATE - Cyber Security Program Governance Framework
Agency Risk Profiling:
- TEMPLATE - CSP Stakeholders Requirements
- TEMPLATE - Security-related Regulatory Legal and Contractual Requirements
- TEMPLATE - Business Impact Analysis (BIA)
- TEMPLATE - Cyber Security Risk Appetite Statement
- TEMPLATE - Information Asset Classification Form
- TEMPLATE - Information Asset Register
Cyber Security Program Planning:
- TEMPLATE - SACSF v1.0 Implementation Toolkit
- TEMPLATE - SACSF v2.0 Implementation Toolkit
- TEMPLATE - Security Risk Register
- TEMPLATE - Security Risk Assessment Report
- TEMPLATE – Security Policy Exemption Request Form
- TEMPLATE – Security Policy Exemption Register
- Security Risk Assessment Workshop Facilitation Guide
- TEMPLATE - Cyber Security Incident Response Plan
- TEMPLATE - Cyber Security Strategy and Roadmap
- TEMPLATE - Cyber Security Work Program
- TEMPLATE - Cyber Security Strategy on a page
- TEMPLATE - SACSF Supplier Security Questionnaire v2.0
- TEMPLATE - SACSF Cyber Security Awareness and Training Plan
Cyber Security Operation:
Implementation:
- TEMPLATE - Security Metrics Monitoring
- TEMPLATE - Cyber Security Management Report
- TEMPLATE - CSP Self-Assessment
- TEMPLATE - Security-Related Issues and Actions Register
Additional templates are available on the Security SA Teams site. SA Government employees can request access by emailing cybersecurity@sa.gov.au.
Cyber security exercises are controlled activities designed to practise and evaluate an organisation's response and recovery from cyber security incidents. The SA Government Cyber Security Exercise Guide and supporting templates provide a structured approach for planning and coordinating exercises, developing realistic scenarios, debriefing participants, and capturing lessons learned.
- Cyber Security Exercise Guide
- TEMPLATE - Exercise plan
- TEMPLATE - Joining instructions
- TEMPLATE - Facilitator handbook
- TEMPLATE - Participant handbook
- TEMPLATE - Exercise evaluator data collection tool
- TEMPLATE - Exercise evaluation report
- TEMPLATE - Exercise participant survey
Additional templates are available on the Security SA Teams site. SA Government employees can request access by emailing cybersecurity@sa.gov.au.