The Tasmanian Government Information Security Framework is comprised of the:

• Tasmanian Government Information Security Charter, and
• Tasmanian Government Information Security Guidelines

Cabinet approved the Tasmanian Government Information Security Charter in May 2003. The Charter outlines the information security principles and policies that are to be applied by agencies to achieve appropriate information security within the Tasmanian Government.

The Guidelines are to assist Heads of Agencies who are responsible to implement the policies set out in the Charter. The Guidelines point agencies to procedures when implementing the policies and principles of the Charter. The Guidelines draw upon recognised standards and Government policies.

The Inter Agency Steering Committee (IASC) provides guidance to the Secretary of the Department of Premier and Cabinet, who has prime responsibility for the development and maintenance of the Guidelines.

The Framework uses a risk-based approach to implement appropriate levels of information security. Risk assessment and management methodology guidelines are integral to the Framework.

Whole-of-government implementations of the Framework provide detailed advice on common procedures. These are a resource to assist agencies with the preparation of information security plans.   Whole-of-government implementations include:

Tasmanian Government WAN and Internet Services: Information Security Policies and Standards

SUPPORTING MATERIAL

Tasmanian Legislation that is referenced in the Guidelines can be found at http://www.thelaw.tas.gov.au

Standards to aid implementation of the Guidelines (can only be accessed from within the Tasmanian Government IP address domain).