Skip to content

Is the PSPF mandatory?


Yes, the Protective Security Policy Framework (PSPF) is mandatory for non-corporate Commonwealth entities. The PSPF outlines the minimum security requirements for the protection of Commonwealth assets, personnel, information and systems. The PSPF is developed and maintained by the Attorney-General's Department and applies to all non-corporate Commonwealth entities.

It is mandatory for all non-corporate Commonwealth entities to comply with the PSPF in order to protect Commonwealth assets, personnel, information and systems. The PSPF is supported by the Australian Government Security Vetting Agency, which provides security clearances to personnel within the Commonwealth and provides advice and guidance on the implementation of the PSPF.

In addition to the PSPF, non-corporate Commonwealth entities must also report to their portfolio minister and the Attorney-General's Department each financial year on security. This is to ensure that the security of Commonwealth assets, personnel, information and systems is maintained and that any breaches of the PSPF are reported and addressed.

General thought leadership and news

Introducing our new reporting dashboards on Power BI

Introducing our new reporting dashboards on Power BI

As part of our ongoing efforts to improve integrations with the 6clicks platform through our new Developer API, we have introduced enhancements to...

Overview of the new 6clicks Developer API

Overview of the new 6clicks Developer API

Hi everyone, Greg here from 6clicks. As you may know, we have recently released our new Developer API, enabling our customers to support and optimize...

How 6clicks is disrupting the GRC market

How 6clicks is disrupting the GRC market: 4 game-changing features you need to know

Hey there, fellow risk and compliance enthusiasts!

Secure your NIS 2 compliance: How to prepare for the NIS 2 Directive

Secure your NIS 2 compliance: How to prepare for the NIS 2 Directive

The updated Network and Information Security Directive (NIS 2) entered into force last January 2023, with the European Commission setting the...

What is the NIS 2 Directive and how does it impact your organization?

What is the NIS 2 Directive and how does it impact your organization?

Today, organizations face advanced and numerous cyber threats that endanger their very existence. In 2023 alone, a staggering 8,302 security...

6clicks unveils Developer API to enhance integration and automation

6clicks unveils Developer API to enhance integration and automation

Melbourne, Australia – 10 July 2024. 6clicks, the leading AI-powered cyber Governance, Risk, and Compliance (GRC) software platform, is thrilled to...