ASD Essential 8
The minimum level of cyber security that you need to know and adhere to.
ASD stands for The Australian Signals Directorate, and they provide a guide for 8 pillars of security to consider as a base level for businesses to adhere to.
What are the Essential 8?
| 1. Application Control | Application control to prevent the execution of unapproved/malicious programs |
| 2. Patch Applications | Patch computers with critical vulnerabilities and use the latest versions of applications |
| 3. Configure Microsoft Office macro settings | Configure Microsoft Office macro settings to block macros |
| 4. User application hardening | Configure web browsers to block Flash and Java. Disable unnecessary features in applications |
| 5. Restrict administrative access | Restrict administrative access to operating systems and applications based on user duties |
| 6. Patch operating systems | Patch operating systems with critical vulnerabilities within 48 hours |
| 7. Multi-factor authentication | Enforce multi-factor authentication for VPNs, RDP, SSH, and other remote access, and all users |
|
Daily backups of essential data and retained for at least three months |
Thanks to our friends at Blue Appache (www.blueappache.com) for their assistance in providing this information, and we recommend all businesses obtain a cyber audit to protect their business’s most precious asset – your data.
