Outcome: Each South Australian Government agency is responsible for maintaining the confidentiality, integrity and availability of all official information.

The following information security policies commenced on 1 December 2019 and provide South Australian agencies with the requirements, guidance and resources to support transition to the new South Australian Information Classification System.

These three policies will form the information security domain of the South Australian Protective Security Framework. The Chief Executive, Department of the Premier and Cabinet, is authorised by Cabinet to approve these policies. The Accountable Authority (the person or group of persons responsible for, and with control over, the agency’s operations) of a South Australian public sector agency is responsible and accountable for the appropriate implementation of this policy within their agency.

These policies apply to all South Australian public sector agencies (as defined in the Public Sector Act 2009) and to any other person or organisation that is generally subject to the direction of a Minister of the Crown; all of which are referred to in these policies as “Agencies”.

Protecting your agency’s information

This policy ensures all South Australian Government agencies protect their information assets from compromise.

Learn more.

Accessing official information

This policy ensures all South Australian Government agencies provide timely, reliable and appropriate access to official information to assist in facilitating efficient and effective delivery of government services.

Learn more.

Robust ICT and cyber security

This policy describes how all South Australian Government agencies can safeguard their information and communication technology (ICT) systems to ensure the confidentiality, integrity and availability of official information, by applying the policies of the South Australian Cyber Security Framework (SACSF).

Learn more.

South Australian Information Classification System

The South Australian Information Classification System (ICS) commenced on 1 December 2019. It is the information classification system all South Australian public sector agencies must use when assessing the confidentiality, integrity and availability of their information assets to ensure appropriate classification, protective markings and handling requirements are assigned.

All agencies must be fully transitioned to the ICS by 1 December 2020.

Learn more.