Skip to main content
FREE RESOURCE

When ACSC publishes an alert,
have a playbook.

When the ACSC issues an alert, attackers are already moving. The businesses that respond inside the first 24 hours are the ones who do not end up as case studies. This playbook is the operational sequence to run.

PLAYBOOK · 7 PAGES · 8 MIN

Get the playbook, sent to your inbox

Your email + business name. That's all. We send the PDF immediately and add you to Tech News Monthly (unsubscribe any time).

Download the playbook

Instant access. No credit card, no phone call.

By downloading you agree to receive Tech News Monthly (monthly summary of cyber + IT news for Aus SMBs). Unsubscribe any time. See our privacy policy.

What's inside

  • A first 15-minute triage to decide if the alert applies to you
  • A first 60-minute containment sequence for actively exploited vulnerabilities
  • Same-day verification and communication checklist
  • The five-step pattern to remember for every future alert

Format

7-page PDF · A4 · ~300 KB · readable on any device

IS THIS FOR YOU

Written for Australian SMB owners and IT managers without 24/7 monitoring

You'll get value from this if

  • You see ACSC alerts in news articles but do not have a documented response process
  • You do not have a managed IT provider monitoring ACSC for you
  • You want a playbook your office manager can run if you are not available

This is not

  • A substitute for an active managed IT relationship that monitors and responds for you
  • Vulnerability-specific guidance (each ACSC alert has its own technical details)
  • A legal or insurance notification procedure

Cyber Posture Snapshot

Your details 1 / 10

How exposed is your business?

Six quick questions, two short ones to tailor the result, and you'll see where your business stands. About two minutes. Plain English, no jargon.

We'll use your email to send a copy of your result. No spam, no pushy sales calls.

Question 1 of 9

When your team logs in to email and business apps, do they need a code from their phone as well as a password?

Question 2 of 9

If a ransomware attack locked all your files tomorrow, could you restore them from a backup?

Question 3 of 9

When Microsoft or Apple release a critical security update, how fast does it land on your computers?

Question 4 of 9

How many people in your business can install software or change system settings on any work computer?

Question 5 of 9

If a staff member got a fake invoice or "urgent" email pretending to be from you right now, what would happen?

Question 6 of 9

When a staff member leaves, when does their access to email, files, and apps actually get cut off?

Question 7 of 9

How many people work in your business?

Question 8 of 9

Who looks after your IT today?

Question 9 of 9

What sort of business are you?

Tailoring your result...

Hi there, here's where your business stands.

Your Cyber Posture
Critical gaps Critical
Notable exposure Notable
Mixed picture Mixed
On the right track On track

Notable exposure

Your two biggest gaps

  1. 1
  2. 2

Where this leaves you on Essential Eight

  • MFA Multi-factor authentication
  • Backups Regular backups
  • Patching Covers 2 of 8: Patch applications + Patch operating systems
  • Admin access Restrict administrative privileges

This snapshot covers 5 of the 8 Essential Eight controls. The full IT Maturity Assessment covers all 8, plus Microsoft 365 hardening, device management, and staff training.

What to do next

Primary CTA

Secondary CTA