Skip to main content
Category
Supplementary Resource
Access
Open
Status
Active
Created
November 2023
Essential Eight is designed to protect organisations’ internet-connected IT networks against cyber threats.

This document describes mitigation strategies, test IDs, control descriptions and test methodologies for assessment against Essential Eight Maturity Level Two.

Main sections:

• Patch applications

• Multi-factor authentication

• Restrict administrative privileges

• Application control

• Restrict Microsoft Office macros

• User application hardening

• Regular backups
Access Example Essential Eight Assessment Test Plan - Maturity Level Two

By accessing this content, you are leaving this website. The Agency takes no responsibility for the accuracy of content on the destination page.