Information security attestation

We are committed to protecting the security of all information that we generate or is provided to us.

To meet this commitment, we have implemented an Information Security Management System (ISMS). The ISMS takes a systematic and repeatable risk-based approach to managing information. This ensures we minimise any risks outside of our established risk appetite.

We manage these information security risks across all our information:

risk to confidentiality
risk to integrity
risk to availability.

Our Director-General has attested to the management of our information security in the Letter of attestation 2023–24.

Last updated: 01 Nov 2024