Essential Eight

ASD baseline cyber security strategy — 8 mitigation strategies, ML0 to ML3.

ASD's Essential Eight is the foundational cyber security baseline for Australian organisations: application control, patch applications, configure Microsoft Office, user application hardening, restrict admin privileges, patch OS, MFA, regular backups. Maturity assessed at ML0 (none) through ML3 (state-level threats). RFFR contracts require ML2.