Defence Industry Security Program (DISP)
The Defence Industry Security Program (DISP) is a risk‑management and assurance framework administered by the Australian Department of Defence. It enables industry partners to understand and meet their security obligations when working with or for Defence. DISP membership requires compliance across 13 security domains and 41 controls, covering governance, personnel, physical security, information security, cyber security, and other critical areas.
Framework summaries on this platform are AI-assisted interpretations for educational and compliance planning purposes. They do not reproduce or replace the official standards. Refer to the authoritative source for the definitive text. Framework names and trademarks belong to their respective organisations.
Framework Domains (4)
DISP: ICT and Cyber Security
| Code | Title |
|---|---|
| DISP-ICT-E8 | Essential Eight Maturity Level 2 on corporate ICT |
| DISP-ICT-INCIDENT | Cyber incident detection and response |
| DISP-ICT-ISM | Classified ICT systems aligned to the ISM (authorisation and accreditation) |
| DISP-ICT-SUPPLYCHAIN | Supply chain, subcontractor flowdown and export controls |
DISP: Membership and Security Governance
| Code | Title |
|---|---|
| DISP-GOV-ASSURANCE | Compliance, assurance and audits |
| DISP-GOV-CSO | Chief Security Officer appointment |
| DISP-GOV-INCIDENT | Notifiable security incident reporting |
| DISP-GOV-MEMBERSHIP | DISP membership, sponsorship and levels |
| DISP-GOV-PLAN | Security plan, policies and processes |
| DISP-GOV-REPORT | Annual security report and reportable changes |
| DISP-GOV-SO | Security Officer appointment |
DISP: Personnel Security
| Code | Title |
|---|---|
| DISP-PERS-AWARENESS | Security awareness training |
| DISP-PERS-CLEARANCE | Security clearances (AGSVA sponsorship) |
| DISP-PERS-LIFECYCLE | Onboarding, offboarding and ongoing suitability |
| DISP-PERS-SCREEN | Workforce screening (AS 4811:2022) |
DISP: Physical Security
| Code | Title |
|---|---|
| DISP-PHYS-ACCESS | Physical access control and visitor management |
| DISP-PHYS-STORAGE | Secure storage and SCEC-approved equipment |
| DISP-PHYS-ZONES | Security zones and facility certification |
Your Compliance Coverage
If you comply with Defence Industry Security Program (DISP), you already cover:
Maps to 3 other frameworks
Frequently Asked Questions
What is Defence Industry Security Program (DISP)?
Defence Industry Security Program (DISP) is a compliance framework from Australia with 4 domains and 18 controls. The Defence Industry Security Program (DISP) is a risk‑management and assurance framework administered by the Australian Department of Defence. It enables industry partners to understand and meet their security obligations when working with or for Defence. DISP membership requires compliance across 13 security domains and 41 controls, covering governance, personnel, physical security, information security, cyber security, and other critical areas. It is used by organisations to establish and maintain compliance with industry standards and regulatory requirements.
How many controls does Defence Industry Security Program (DISP) have?
Defence Industry Security Program (DISP) has 18 controls organised across 4 domains. The largest domains are DISP: Membership and Security Governance (7 controls), DISP: ICT and Cyber Security (4 controls), DISP: Personnel Security (4 controls). Each control defines specific requirements that organisations must implement to achieve compliance.
What frameworks does Defence Industry Security Program (DISP) map to?
Defence Industry Security Program (DISP) maps to 3 other compliance frameworks. The top mapping partners are Defence Security Principles Framework (DSPF) (17% coverage), NIST Cybersecurity Framework 2.0 (6% coverage), ACSC Essential Eight (6% coverage). Use our comparison tool to explore control-level mappings between frameworks.
How do I get started with Defence Industry Security Program (DISP) compliance?
Start your Defence Industry Security Program (DISP) compliance journey by running a self-assessment on our platform to identify your current compliance posture. Our AI advisory can answer specific questions about Defence Industry Security Program (DISP) requirements, and cross-framework mapping helps you leverage existing controls from other frameworks you may already comply with. Create a free account to access all 18 controls and track your progress.
Start Your Compliance Journey
Create a free account to run self-assessments, get AI advisory, and track your compliance progress across 718 frameworks.
Get Started Free →Free forever — no credit card required