GCSB updates NZ Information Security Manual


By Dylan Bushell-Embling
Monday, 04 March, 2024

GCSB updates NZ Information Security Manual

New Zealand’s Government Communications Security Bureau (GCSB) has updated the New Zealand Information Security Manual to ensure it remains fit for purpose and takes into account new security developments.

The updates include one policy change related to the section on key management operating practices, which has involved the deletion of one security control covering developing key management plans, the addition of another control and the modification of a third.

Meanwhile, editorial changes have been made to the section covering the applicability, authority and compliance of the Government Chief Information Security Officer, outlining the roles of the position under its new system lead management.

Finally, the section covering information security services within government has been amended to provide updated information on the GCSB and its mission. As part of this change, a control has been modified to stipulate that security personnel must familiarise themselves with the information security roles and services provided by New Zealand Government organisations.

According to the GCSB, the changes were driven by threats and risks identified through enquiries from agencies, the agency’s own research, information security policy gaps highlighted by changes in the way government agencies work, and changes to the international security frameworks and standards that the manual has been based on.

A planned addition of new content governing use of the Bluetooth protocol has been kept out because it still requires further work and consultation, the GCSB added. The new section will be published later this year.

Image credit: iStock.com/Parradee Kietsirikul

Related News

World-first 'Cybercrime Index' ranks countries by threat level

The first ever World Cybercrime Index identifies the globe's key cybercrime hotspots by...

Careless employees cause 80% of Australian data losses: report

While organisations are investing in DLP solutions, a report by Proofpoint shows that those...

Intercede launches MyID MFA 5.0

Intercede has introduced a range of enhancements to its MyID MFA multi-factor authentication...


  • All content Copyright © 2024 Westwick-Farrow Pty Ltd