Essential Eight Assessment Quiz
Assess your cybersecurity maturity against the ACSC Essential Eight framework. Get your maturity level score and actionable improvement recommendations.
- All 8 mitigation strategies covered
- Maturity level scoring (0-3)
- Gap analysis report
- Prioritised recommendations
- Compliance roadmap
Essential Eight Assessment
Question 1 of 8
How does your organisation control which applications can run?
01About the Framework
The Essential Eight strategies.
The Essential Eight is a prioritised list of mitigation strategies developed by the Australian Cyber Security Centre (ACSC) to help organisations protect themselves against cyber threats.
Application Control
Prevent execution of unapproved applications including .exe, DLL, scripts, and installers.
Prevent malware executionPatch Applications
Patch applications within 48 hours if a critical vulnerability exists.
Prevent malware executionConfigure Office Macros
Block macros from the internet, and only allow vetted macros in trusted locations.
Prevent malware executionUser App Hardening
Configure web browsers to block Flash, ads, and Java. Disable unneeded features.
Prevent malware executionRestrict Admin Privileges
Restrict administrative privileges to operating systems and applications based on user duties.
Limit cyber intrusionPatch Operating Systems
Patch operating systems within 48 hours if a critical vulnerability exists.
Limit cyber intrusionMulti-Factor Authentication
Implement MFA for VPNs, RDP, SSH, and other remote access.
Limit cyber intrusionRegular Backups
Perform daily backups of important data. Store backups disconnected and test restoration.
Recover data02Maturity Levels
Maturity levels explained.
L0
Not Aligned
L1
Partly Aligned
L2
Mostly Aligned
L3
Fully Aligned
04FAQ
Frequently asked questions
The Essential Eight is a cybersecurity framework developed by the Australian Cyber Security Centre (ACSC). It comprises eight mitigation strategies that, when implemented, make it much harder for adversaries to compromise systems. The strategies cover application control, patching, macro settings, user application hardening, admin privileges, multi-factor authentication, backups, and patching operating systems.
Free audit
IT problems keeping you up at night?
Book a free assessment. We'll document what's broken, what's at risk, and what it costs to fix. Plain English, no surprises.
Flexible terms12, 24, and 36-month managed agreements
90-minute on-siteFor managed clients across Sydney metro
4-hour emergencyResponse for ad-hoc and emergency clients