Information Security Handbook

The Austrian Information Security Handbook describes and supports the approach to establish a comprehensive information security management system (ISMS) within companies and public authorities. It was updated by A-SIT under the assignment by the Austrian Federal Chancellery.

This update is on the one hand based on current international developments in the area of information security and on the other hand on cooperation with the German Federal Office for Information Security (BSI) and the Swiss Federal IT-Steering Unit (ISB). It further extends the strength of the handbook to provide an independent, comprehensive yet compact demonstration of risks, to which information may be exposed to, and corresponding counter measures relevant to Austrian institutions.

Additionally, due to its structure, the Austrian Information Security Handbook is suitable as assistance for the implementation of national (e-government) and international standards (f.e. ISO/IEC 27001 and 27002) within public administration or private enterprises. Structure and content are based on international guidelines to ease the implementation of requirements defined by the ISO/IEC 27000 standards series. For this purpose measures were developed, to be easily used by public administration and businesses. The structure also allows the consideration of cross-sectional matters by specifications of departments in administration and commerce.


The online version is available under