What is DISP?

A brief introduction to the Defence Industry Security Program and its role in ensuring the security of Defence-related information and assets.
Print this page

The Defence Industry Security Program (DISP) is an Australian Government membership program designed to help companies meet the necessary security requirements when working with the Department of Defence or handling sensitive Defence information. Its underpinned by the Defence Security Principles Framework - Principle 16, Control 16.1, Defence Industry Security.

It is essentially security vetting for Australian entities.

The purpose of DISP is to:

  • ensure industry has the right security in place for Defence tenders and contracts
  • provide industry with access to security advice and support services
  • help industry to understand and manage security risks
  • provide assurance to Defence and other government entities when working with DISP members.

DISP has several levels of accreditation, and we are currently focused on Entry Level compliance, which covers the foundational security requirements for working with Defence-related contracts and information.

DISP covers four core areas (“security domains”):

  • Security governance: Managing security risks and maintaining compliance with security standards.
  • Personnel security: Ensuring that staff with access to sensitive information are vetted and trustworthy.
  • Physical security: Protecting facilities and locations where defense information or assets are stored.
  • ICT and cyber security: Safeguarding Defence-related data and systems in the cyber realm.

Our commitment to DISP compliance helps us protect Defence information, meet government standards, and ensure trust with our Defence partners.

Why does DISP matter to me?

Regardless of your role at Vaxa, DISP compliance is essential because it affects how we all handle sensitive information and protect the security of our workplace–even if this is not Defence-related information. It’s forms part of our standard that we strive to achieve across our entire organisation, you included.

Here’s why it matters:

  • Protecting sensitive information: DISP requires that we handle Defence-related data with the utmost care. This means following strict guidelines when accessing, sharing, or storing information to prevent leaks or unauthorized access.
  • Maintaining trust: Our ability to work with Defence, Defence industry, and some Commonwealth contracts depends on meeting DISP requirements. By following these guidelines, we demonstrate that we can be trusted to handle their sensitive information securely.
  • Personal responsibility: Every employee plays a part in keeping Vaxa compliant. Whether it’s following the Acceptable Use Policy for IT systems, participating in security training, or reporting suspicious activity, your actions directly contribute to our overall security.
  • Job security and growth: Being compliant with DISP allows Vaxa to continue working with government clients and Defence, which helps the company grow and secure more opportunities. That stability benefits every employee by creating a safer, more secure workplace and ensuring the long-term success of our projects.

In short, DISP compliance means keeping our workplace secure, maintaining trust with our clients, and contributing to the success and growth of Vaxa. Every action you take to support security helps ensure we meet these standards.

Last modified March 3, 2025: Merge pull request #15 from vaxa-tech/add-munki-docs (6d10186)