Government Departments

The Queensland Government is comprised of departments and agencies whose role it is to implement policies and deliver a portfolio of services to Queenslanders.

The Queensland Government Cyber Security Unit (CSU) works with departments and agencies to increase visibility and understanding of their cyber security and information security risks. We work with agencies to make informed business risk decisions and lead initiatives to keep Queensland government secure.

Recommended Cyber Security Services

The CSU offers a range of cyber security services as part of its strategy to improve the security posture and capability of all Queensland Government organisations and is focused on assisting organisations to implement cost-effective cyber security services under the CSU Partnership Arrangement.

The purpose of the CSU Partnership Arrangement is to enhance cooperative and effective working arrangements to promote the uptake of Cyber Security Services with the aim of increasing the protection of Queensland Government information systems from cyber security threats.

Capability Development

CSU is partnering with business, academia, and education to deliver a range of cyber security capability development initiatives with the aim of creating a culture of cyber security awareness and preparedness across all sectors of the Queensland public service. Please refer to the Capability Development Service Description for more detailed information about this service.

Microsoft 365 Monitoring and Response Service (Sentinel)

QGCDG has deployed a Whole of Queensland Government (WoQG) M365 security monitoring capability based on the Microsoft Azure Sentinel platform. The service enables security alerts from multiple tenancies to be consolidated and monitored by a central team of cyber security analysts with a goal of turning detection in one tenancy into protection in all tenancies. Refer to the Service Description and watch the quick video-overview for more detailed information about this service.

Please visit the M365 Service Implementation and Support resources and complete the application form to commence onboarding this service.

Protective DNS

DNS Resolution provides internet DNS resolving services without exposing an organisation’s infrastructure to the internet. The Protective DNS service enables Threat Intelligence on known malicious websites, which may be harbouring malware, to be provided to an agency’s DNS resolver to automatically block access to suspicious sources on the internet. Refer to the Protective DNS Service Description for more detailed information about this service.

Please complete the Protective DNS application form to commence onboarding this service or review the Implementation and Support resources for further information.

Vulnerability Scanning

This service utilises the Rapid 7 Insight Platform and Splunk Dashboard to collect, analyse and visualise data streams of cyber security vulnerabilities present within an organisation’s IT systems and technology infrastructures. The dashboard enables large data streams to be transformed into useful information which can be used to inform internal engagement and decision-making to achieve powerful business and operational outcomes. Refer to the Vulnerability Scanning Service Description for a high level overview of this service or view the vendor Product Brief for detailed information.

Please complete the Vulnerability Scanning application form to commence onboarding this service or review the Implementation and Support resources for further information.

DMARC Analysis Service

Agencies can utilise a vendor provided DMARC (Domain-Based Message Authentication Reporting and Conformance) service platform called DMARC Analyzer which is delivered by Mimecast. DMARC Analyzer allows organisations to monitor their email channels with greater visibility, enabling them to see what emails are being sent and received and the reputation of those emails. DMARC provides a method to block malicious emails being sent via an organisations’ domains to protect their clients and customers from spoofed domain messages and phishing attacks. Refer to the DMARC Service Description and watch the DMARC overview video for more detailed information about this service.

Please complete  the DMARC Service application form to commence onboarding this service or review the Implementation and Support resources for further information.

Cyber Threat Intelligence

The Cyber Threat Intelligence (CTI) service provides Queensland Government agencies with the ability to view and share timely, relevant and actionable threat information about their ICT assets. The aim of CTI is to reduce the likelihood of incidents by uplifting situational awareness through detective and predictive measures thereby enabling organisations to understand the threats they face, their capabilities and associated risks. Refer to the CTI Service Description for more detailed information about this service.

Please complete the CTI Service application form to commence onboarding this service or review the Implementation and Support resources for further information.

Phishing and User Awareness

Anti-Phishing training program are designed to help identify and reduce employee susceptibility to phishing and spear phishing attacks. The Queensland Government Cyber Security Unit (QGCSU) has established a suite of vendor provided Phishing Simulation and User Awareness Training resources delivered by Proofpoint, Inc. Anti-phishing simulations and continuous training methodology has been shown to reduce successful phishing attacks and malware infections by up to 90%. Please refer to the Phishing and User Awareness Service Description for more detailed information about this service.

View All Cyber Security Services

Communities of Practice

CSU Newsletter

Please contact your Cyber Security Unit representative at CyberSecurityUnit@qld.gov.au to discuss how we can assist you.

Last Reviewed: 01 June 2022