Free NIST CSF Assessment

NIST CSF Lite Assessment

A free, business‑friendly version of the NIST Cybersecurity Framework 2.0 – tailored for Australia and New Zealand

Evaluate your security programme across all six CSF functions: Govern, Identify, Protect, Detect, Respond, and Recover. Get a maturity level (Foundational → Optimising) for each area, plus an overall score based on your weakest function – because a gap in any single area can be exploited even when others are strong.

New Zealand context: References the Privacy Act 2020, the New Zealand Information Security Manual (NZISM), and NCSC NZ guidance. Use this assessment to prepare for government procurement or to demonstrate reasonable security safeguards.

Australian context: Aligned with the ASD Essential EightPrivacy Act 1988 (Cth), and the Notifiable Data Breaches (NDB) scheme. Ideal for businesses tendering for government contracts or needing to meet the Security of Critical Infrastructure Act (SOCI) obligations.

This free self‑assessment takes about 8 minutes. You’ll receive a private, token‑protected report you can share with your leadership team, auditor, or insurer – no obligation, no credit card required.

For a deep dive into technical controls, try our Essential Eight maturity assessment. Or start with the quick SMB Cyber Readiness check.

  • Maturity levels per function

    Foundational → Developing → Established → Optimising. Know exactly where you stand, function by function.

  • Priority action plan

    A ranked list of improvements, with effort estimates (Quick Win / Medium / Project).

  • Local regulatory mapping for AU & NZ

    Guidance that references AU Privacy Act, NDB scheme, NZISM, and Privacy Act 2020.

  • Weakest‑first scoring

    Your overall level is your lowest‑scoring function, because attackers target the weakest link, not your average.

  • Private, shareable report

    Token‑protected link you can share with your team, board, or auditor.

  • Benchmark comparison

    See how your maturity compares to other AU/NZ organisations assessed through this platform.