Information security annual return Template | March 2025–current CurrentNon-mandated Information security annual return
Cybersecurity insurance for Queensland Government agencies Guideline | December 2019–current CurrentNon-mandated Agencies participating in the Queensland Government Insurance Fund are covered for damage from cyber events.
Email spoofing protection guideline Guideline | March 2022–current CurrentNon-mandated Recommended best practice advice to deliver email hygiene and protection controls to all Queensland Government owned Domain Name Service (DNS) domains and subdomains
Information security classification controls guideline Guideline | January 2025–current CurrentNon-mandated The Information Security Classification Controls Guideline provides practical controls guidance to agencies on information security controls to apply to their information according to business impact level (BIL).
Vulnerability management guideline Guideline | February 2025–current CurrentNon-mandated This document assists agencies to meet their operational security requirements under the Information Security Policy (IS18)
Ransomware guideline Guideline | August 2022–current CurrentNon-mandated This guideline discusses ransomware and the Queensland Governments position against paying ransomware, and ways that agencies can protect themselves.
Reducing password frustration guideline Guideline | January 2025–current CurrentNon-mandated Password frustration can be experienced by computer users who are required to remember multiple usernames and passwords, and is compounded when passwords must be changed frequently.
QGAF templates Template | August 2017–current CurrentNon-mandated Queensland Government Authentication Framework templates