IS18 Annual Report
The IS18 Annual Report created as part of compliance under the Information security policy (IS18:2018) is to ensure we are identifying risks and managing our information technology over their life cycle.
Under the Information Security Policy (IS18:2018), applicable entities are required to submit an Information Security annual return. The Queensland Government Cyber Security Unit compiles these submissions into an IS18 Annual Report. This report provides a high-level overview of the entity’s information security posture and is shared with executives to inform them of key insights.
Delivering the IS18 Annual Report provides senior leaders with a clear benchmark for their agency, helping them assess their information security posture against the Information security policy (IS18:2018), established standards and best practices.
The IS18 Annual Report collates and aligns:
- ISMS audit results
- Essential Eight strategy
- mandatory Queensland Government standards and frameworks including IS18 requirements
- insights from threat intelligence
- data collected throughout the reporting year.
Each agency’s report contributes to a whole-of-government insight into the cyber posture, providing an overview of how the public sector is performing that year.
The following agencies and related bodies can access this service:
- Queensland Government agencies
- statutory bodies
- local government
- government owned corporations.
Email the Queensland Government Cyber Security Unit at cybersecurityunit@cyber.qld.gov.au.