Create secure digital services to protect government systems and data.
Minimum you need to do
Engage early and know how to identify and manage risk.
Apply guiding principles and best practice.
Carry out testing and assessments for security.
Follow mandatory policy requirements.
When to do it
Embed and integrate security into your service design at the outset. Continue to track and test the security of your service once it is live.
Everyone is responsible for security and risk management – your team, agency and NSW Government.
Why you need to do this
You must create secure government services that will protect the information government collects and holds. This means creating trusted, resilient services for your customers.