4 mins read
The Defence Industry Security Program (DISP) is open to any Australian business looking to become part of the Defence supply chain and serves as a layer of security assurance.
This blog aims to demystify the DISP by providing you with what you need to know, to start your application. It uncovers:
- What is DISP and Why it’s important
- Who can Join the DISP
- How do you Join
- Meeting the IT Networks Requirements with ISO/IEC 27001
Looking to Tender for Defence Opportunities? Download our Free Guide
Download NowWhat is DISP and Why is it Important?
DISP supports Australian businesses address risks associated with providing services, products, or capability to the Australian Defence Organisation.
The program is intended to address and protect the Defence supply chain from security vulnerabilities by assessing business’s processes, procedures, information technology and cyber security, physical security and personnel security.
This lucrative program provides a layer of protection for the Defence supply chain, allowing for an improvement in resilience, security and assurance of its sourcing arrangement.
Who Can Join DISP?
Any Australian business looking to become part of the Defence supply chain must obtain membership.
There are significant benefits of the DISP membership, including:
- Improved security operating environment for your.
- Ability to sponsor your own security clearances (not available for Entry Level membership).
- Opportunities to access international contracts.
- Security training and materials, including cyber training.
- Advice and analysis on the latest security trends and threats.
There are four key categories that the DISP will assess you against:
- Personnel Security
- Physical Security
- Information & Cyber Security
- Security Governance
These categories will be assessed against your level of membership, where the higher the level of membership, the more rigorous the assessment. These levels include:
- Entry Level = Official/Official: Sensitive
- Level 1 = Protected
- Level 2 = Secret
- Level 3 = Top Secret
What Do You Need to Join?
To successfully become a DISP member, you will need to meet the eligibility and suitability requirements.
This includes providing evidence that your business is sustainable, can continue to deliver on-time and to expectation, and can protect its ICT networks.
While evidence for business sustainability can be provided through financial records, having an ABN and more, certification to ISO/IEC 27001 meets the ICT Networks requirement.
Benefits of ISO/IEC 27001:2013
Minimise Information Security Risks to Your Business
Support business growth by identifying and assessing information security risks and opportunities with outcome driven results.
Meet Compliance Requirements
Build confidence and trust with your stakeholders by demonstrating your compliance to information security requirements.
Build Organisational Resilience
Implement processes and controls that improve your organisation’s ability to identify and manage information security risks.
Learn What is Involved at Each Step of the ISO 27001 Implementation Process
Learn More8 Steps to Implement an ISO 27001 Management System
- Project Initiation
- Define the ISMS
- Conduct a Risk Assesment
- Risk Management
- Training & Awareness
- Preparing for the Audit
- Certification Audit
- Continual Improvement