Australian Cyber Security Centre

ACSC Essential Eight
Fully Covered.

RTCS delivers Essential Eight assessment and uplift services across all eight mitigations. From a baseline gap assessment through to a structured path to Maturity Level 3. Grounded in hands-on offensive expertise, because the best way to assess a defence is to know how an attacker thinks.

The Eight Mitigations

Essential Eight Coverage

01
Application Control

Prevent execution of unapproved/malicious programs. RTCS enforces allowlisting across all endpoints with ML-assisted policy management.

Covered
02
Patch Applications

Expert-managed patch management advisory with defined remediation timelines for critical vulnerabilities. Regular vulnerability scanning and reporting across your asset base.

Covered
03
Configure Microsoft Office Macro Settings

Macro policy configuration and enforcement consulting. We design and implement macro controls appropriate to your environment and business requirements.

Covered
04
User Application Hardening

User application hardening consulting - browser configuration, plugin controls, and baseline hardening. We document and test your hardening standards.

Covered
05
Restrict Administrative Privileges

Just-in-time privilege elevation. PAM integration, admin account monitoring, and automatic privilege expiry with full audit trails.

Covered
06
Patch Operating Systems

OS patch management across Windows, Linux, macOS. 48-hour critical patch SLA with rollback capability and change management integration.

Covered
07
Multi-Factor Authentication

Phishing-resistant MFA enforcement across all users and access pathways. FIDO2/WebAuthn, smart card, and hardware token support.

Covered
08
Regular Backups

Backup strategy consulting and assurance. We assess your backup architecture, test recovery procedures, and ensure your approach meets Essential Eight requirements.

Covered
Interactive · 2-Minute Self-Check

Where Do You Actually Stand?

You've seen the eight mitigations we cover. Now answer eight quick questions and we'll show you your real maturity - because your overall level is only ever as strong as your weakest control. No email required, nothing stored.

01 How widely is multi-factor authentication enforced?
02 How quickly are internet-facing applications patched?
03 How current are your operating systems?
04 Who holds administrative privileges?
05 Can staff run any executable they like?
06 How are Microsoft Office macros handled?
07 Are browsers and applications hardened?
08 When did you last test restoring from backup?
0 of 8 answered

Answer all eight questions to reveal your Essential Eight maturity.

Framework Alignment

Frameworks We Work To

The Australian and international frameworks our engagements are grounded in. The meter shows how we deliver each one: Core deep in-house work, Advisory consulting, or Supporting, where we get you ready and an accredited external body certifies.

ASD / ACSC
Essential Eight

Maturity assessments and uplift roadmaps across all eight mitigations - our most-requested engagement.

Core
ASD
ASD Cloud Controls

Cloud posture reviews aligned to the ASD cloud security guidance for AWS, Azure, and GCP.

Core
ISO / IEC
ISO/IEC 27001:2022

Gap analysis and readiness consulting toward certification - we get you audit-ready, your auditor certifies.

Advisory
ASD
Information Security Manual

ISM control mapping and evidence support for government and government-aligned environments.

Advisory
AGD
PSPF

Protective Security Policy Framework information-security guidance for non-corporate Commonwealth entities.

Advisory
NIST
NIST CSF 2.0

Framework-based advisory for organisations standardising on the NIST Cybersecurity Framework.

Advisory
Home Affairs
SOCI Act · SLACIP

CIRMP advisory and incident-response readiness for critical-infrastructure obligations.

Supporting
IEC
IEC 62443 (OT)

Hands-on OT and ICS security advisory aligned to IEC 62443.

Supporting
PCI SSC
PCI DSS v4.0

Scoping and readiness; the formal QSA assessment is done by an accredited external assessor.

Supporting
Get Assessed

Ready for Your Essential Eight Assessment?

Request an Assessment