On 20 August 2024, Sekuro and our client, legal firm Mills Oakley, co-hosted a Cyber Leadership Exchange in Sydney. Headlined by the Deputy National Cyber Security Coordinator Tony Chapman, the event also incorporated a panel of leaders from government, business, legal, insurance and board directorship.
Sekuro’s annual Leadership Exchange is a forum for cyber security leaders and influencers centred on determining how we can tackle our common challenges together, with our inaugural event in 2023 in Melbourne keynoted by then Minister for Cyber Security, Clare O’Neill.
In his welcome remarks, Sekuro CEO Noel Allnutt implored the audience, “We’re in this together – (cyber resilience) is a team sport, a contact sport. The power we get out of today’s event is the power of the connections that are made. Each one of us needs to take the lead role of educating our families, communities and networks.”
Deputy National Cyber Security Coordinator Keynote: Updates on our National Cyber Security Strategy
National Office of Cyber Security (NOCS), Deputy National Cyber Security Coordinator and First Assistant Secretary, Tony Chapman, delivered a virtual keynote on our government’s core directives and our progress in relation to the National Cyber Security Strategy.
Chapman emphasised that effective and resilient cyber security frameworks at both the enterprise and national levels necessitate ongoing collaboration and coordination across government and the broader Australian community, via strong public-private partnerships that harden our defences and make us a less attractive target to cyber perpetrators.
The vision to be a world leader in cyber security by 2030 can only be realised if we mobilise the nation – across homes, schools and workplaces – to prepare for, and better respond to, cyber security incidents. Cyber security is not a technical topic, but a whole-of-nation endeavour. The government will be focusing on providing better support to businesses and individuals – in particular, minimising the threats to small-medium businesses.
“The vision to be a world leader in cyber security by 2030 can only be realised if we mobilise the nation – across homes, schools and workplaces – to prepare for, and better respond to, cyber security incidents. Cyber security is not a technical topic, but a whole-of-nation endeavour.”
Tony Chapman, Deputy National Cyber Security Coordinator and First Assistant Secretary, National Office of Cyber Security (NOCS)
Chapman shared that he has the confidence that industry and government have the energy, capability, intelligence and fortitude to achieve the goals set in the 2023-2030 Australian Cyber Security Strategy.
The Journey to 2030 – Australian Cyber Security Strategy
The action plan for our nation’s cyber security strategy focuses on the alignment of interests between public and private sectors, which is where the greatest opportunities lie for galvanising our cyber defence capabilities.
The objectives of the action plans are to:
- Minimise the regulatory burden
- Promote innovation
- Maximise participation
- Adapt to emerging technological, economic and geopolitical trends via a flexible approach
Addressing the critical gaps across the Six Shields in industry and Government
Introduction of cyber legislation that will address 4 issues:
- Mandatory standards for smart devices
- Ransomware reporting
- Limited use obligation on Federal Government entities and regulators
- Cyber-incident review board to conduct investigations on a no-fault, no-liability basis
Support businesses – development of a ransomware playbook to help SMBs deal with, and bounce back from, cyber extortion attacks
Solidify our international alliance efforts – with our Quad partners India, Japan and the US to harmonise software standards for Government procurement and to leverage our collective buying power in setting high IT security standards across global markets
Focusing on new and emerging technologies – including the safe and responsible use of AI; and establishing standards for post-quantum cryptography, incl. having data custodians conduct a review of their data holdings and develop plans to prioritise and protect critical and sensitive data
Via further investment and support, fostering growth of our sovereign cyber industry and continuing to build a diverse cyber workforce.
Lead the development of emerging cyber technologies, supported by the Executive Cyber Council and the National Cyber Intel Partnership (NCIP).
The Council is addressing our priority needs in AI and quantum computing; and the NCIP is focused on cyber threat intelligence sharing and enhancing threat blocking capabilities. These forums help us keep ahead of the game.
Horizon 1 (2024-2025)
Strengthening our foundations
Addressing the critical gaps across the Six Shields in industry and government
Introduction of cyber legislation that will address 4 issues:
- Mandatory standards for smart devices
- Ransomware reporting
- Limited use obligation on federal government entities and regulators
- Cyber-incident review board to conduct investigations on a no-fault, no-liability basis
Support businesses – development of a ransomware playbook to help SMBs deal with, and bounce back from, cyber extortion attacks
Solidify our international alliance efforts – with our Quad partners India, Japan and the US to harmonise software standards for government procurement and to leverage our collective buying power in setting high IT security standards across global markets
Focusing on new and emerging technologies – including the safe and responsible use of AI; and establishing standards for post-quantum cryptography, incl. having data custodians conduct a review of their data holdings and develop plans to prioritise and protect critical and sensitive data
Horizon 2 (2026-2028)
Scaling our cyber maturity
Via further investment and support, fostering growth of our sovereign cyber industry and continuing to build a diverse cyber workforce.
Horizon 3 (2029-2030)
Adapting to new risks
Lead the development of emerging cyber technologies, supported by the Executive Cyber Council and the National Cyber Intel Partnership (NCIP).
The Council is addressing our priority needs in AI and quantum computing; and the NCIP is focused on cyber threat intelligence sharing and enhancing threat blocking capabilities. These forums help us keep ahead of the game.
Cyber security is everyone’s business – preparedness and collaboration are paramount
Two key government initiatives are the:
- National Cyber Exercise Program, where members practice cyber security responses across all sectors and are rehearsed to deal with actual crises. These regular exercises help ensure cyber and crisis management are integrated, practical and understood, between government and industry.
- Trusted Information Sharing Network (TISN), where critical infrastructure owners and operators share their threat and vulnerability intelligence and collaborate on the appropriate risk mitigation and resilience initiatives.
The reality is our industry is suffering from a chronic shortage of job-ready, diverse and appropriately skilled cyber professionals. The Government is prioritising education and training reforms as a key enabler in building a world-class cyber-smart nation. This involves a national scheme to provide employers and businesses with assurance that the cyber security workforce is appropriately skilled, experienced and fit for purpose.
The Federal Government’s vision for a cyber resilient nation needs a robust plan and strong leadership, led by a balanced combination of Government and private sector expertise and experience. Citing CSC Lieutenant General Michelle Irene McGuinness, “cyber security is everyone’s business.” The Government cannot deliver the mission on their own – it is critical we continue to consult, collaborate and partner with each other and work together on our higher goals as a collective.
Chapman added, “If there is one message I can leave with you today, it’s the importance of commitment and long-term investment in cyber security – as an individual, employee or as a business.”
“The journey of hardening your defences needs to begin today, and in supporting a culture of cyber awareness within your own organisations.”
“If there is one message I can leave with you today, it’s the importance of commitment and long-term investment in cyber security – as an individual, employee or as a business.
“The journey of hardening your defences needs to begin today, and in supporting a culture of cyber awareness within your own organisations.”Tony Chapman, Deputy National Cyber Security Coordinator and First Assistant Secretary, National Office of Cyber Security (NOCS)
Insert Person's Name
Chief Growth Officer, Sekuro
Shamane Tan is one of the most established women in the fields of technology and cybersecurity. As the Chief Growth Officer at Privasec and Sekuro, she is responsible for leading the security outreach strategy with the C-Suite and executives. Recognised by IFSEC as one of the global top 20 cybersecurity influencers, the ‘Cyber Risk Leaders’ author was also recently listed in the 40 under 40 Most Influential Asian-Australians and Top 30 Women in Security ASEAN Region 2021. A TEDx speaker and podcaster, Shamane is also the Founder of Cyber Risk Meetup, an international community and platform for cyber risk executives to exchange learnings.