Compliance and Security for Australian SMEs

A Focus on Essential Eight and NIST

For many businesses looking to improve their security posture and internal governance, processes and policies, the first step often focuses on establishing and generally accepting cyber security frameworks.  

The two commonly discussed options are the Australian Signals Directorate’s (ASD) Essential Eight framework and the NIST Cybersecurity Framework. The main question then becomes, which is right for my organisation? 

This blog provides a general overview of each framework, some pros and cons, the differences between the two, and what to consider when choosing a framework.