Business process description template Template | January 2016–November 2024 RepealedNon-mandated This template is designed to help agencies describe business processes
Email spoofing protection guideline Guideline | March 2022–current CurrentNon-mandated Recommended best practice advice to deliver email hygiene and protection controls to all Queensland Government owned Domain Name Service (DNS) domains and subdomains
Business services classification framework Framework | July 2010–current CurrentNon-mandated Queensland Government business services (business services) are defined as sets of activities that deliver value to or enable outcomes for Queenslanders through the delivery of business outputs.
Incident reporting - manual form Template | September 2024–current CurrentNon-mandated Under the Information security incident reporting standard, agencies can use this template to for both immediate and low business impact reporting.
Business process modelling notation guideline Guideline | January 2016–November 2024 RepealedNon-mandated This guideline provides information and advice to Queensland Government agencies on the recommended practices for documenting business processes using the Business Process Model and Notation (BPMN[1]) Specification Version 2.0 released January 2011.
Vocabulary for event recording and incident sharing framework overview Guideline | September 2024–current CurrentNon-mandated The VERIS framework is a set of metrics designed to provide a common language for describing security incidents in a structured and repeatable manner
Metadata (IS34) (Repealed) Policy | November 2010–June 2019 RepealedNon-mandated This policy was repealed on 6 June 2019. This policy provides the minimum requirements for the management of metadata for Government information and information assets.
Controlling the exposure of data with M365 copilot and Microsoft copilot in Queensland Government guideline Guideline | September 2024–current CurrentNon-mandated Promoting a common approach to evaluating, communicating, and managing risks and issues associated with the uncontrolled or unauthorised exposure of data with M365 copilot and Microsoft copilot.
Data governance guideline Guideline | October 2019–current CurrentNon-mandated Provides advice to agencies who have identified a need to better plan, monitor and control their data.
Information sharing - lessons learned report Guideline | October 2015–November 2024 RepealedNon-mandated This report is the result of a review of information-sharing activities across the Queensland Government