At A Glance
- Australia launches 2023-2030 Cyber Security Strategy to bolster digital defence.
- Strategy includes significant review of federal data retention requirements.
- Telecom regulation shifted under Security of Critical Infrastructure Act.
- $290.8 million allocated to strengthen SMEs against cyber threats.
Labor Government's Vision: The 2030 Cyber Security Strategic Framework
The Australian Government's unveiling of the 2023-2030 Australian Cyber Security Strategy (ABC) marks a pivotal moment in the nation's approach to digital security. Spearheaded by Security Minister Clare O'Neil, the strategy's release is particularly timely, following the substantial data breaches impacting millions of Optus and Medibank customers and the alarming 23% rise in cybercrime reports over the previous year.
The CNC editorial news review on cyber policy focused on the federal data retention requirements. This review aims to mitigate risks and reduce burdens associated with the prolonged storage of significant data volumes.
The strategy also underscores the expansion of the Digital ID program. This initiative facilitates online verification without excessive personal data sharing, thereby limiting sensitive information exposure for both individuals and entities.
In a significant regulatory shift, telecommunication providers are set to align with other critical infrastructure sectors.
Home Affairs Minister Clare O’Neil outlined new plans to class telecommunications as ‘critical infrastructure’ for the first time under the Security for Critical Infrastructure Act (SOCI).
This move involves transferring the security regulation of the telecom sector from the Telecommunications Act to the Security of Critical Infrastructure Act
Financially, the strategy is substantial, with nearly half of its funding - $290.8 million - earmarked for small and medium-sized businesses. This investment will support public awareness, combat cybercrime, disrupt the ransomware business model, and enhance the security of Australian identities.
Furthermore, there is a planned investment in establishing consumer standards for smart devices and software. This is coupled with initiatives to professionalise the cyber workforce and accelerate the cyber industry's growth.
A notable allocation of $9.4 million is dedicated to developing a threat-sharing platform for the health sector, with potential expansion to other fields.
Minister O'Neil emphasised the strategy's critical nature, stating,
“The strategy is bold and ambitious, and it has to be. The last five years have made one thing abundantly clear: we simply can’t continue as we are.”
In an ABC interview with Alastair MacGibbon, Chief Strategy Officer at Cyber CX, the strategic implications of the ABC were further explored. MacGibbon emphasised the resolution of the Australian labour force shortage and the necessity for both domestic training programs and international talent recruitment to enhance cyber capabilities.
"Upskilling is crucial. We must leverage existing skill sets and strategically augment them to address this widespread issue. It's about changing the narrative around our country’s ability to tackle cyber threats effectively.”
- MacGibbon highlighted.
Moreover, he stressed the importance of talent distribution and increased training opportunities, stating, "We're committed to finding the right people over three years. If other companies, like Microsoft and others, join in training people, it would significantly boost our capabilities."
The sentiment resonates across various layers within the cybersecurity services industry.
Mark Mantakoul, General Manager at Zirilio, provides valuable insight into the resilience challenges faced by Australia’s cybersecurity workforce.
Zirilio's general manager emphasises the need for increased attention from federal governments to support business services with adaptive policies, thereby enhancing the future talent pool.
“By prioritising the development of cyber skills, the strategy intelligently addresses the often-overlooked human element in cybersecurity, ensuring a well-equipped workforce ready for future challenges.”
– Mr. Mantakoul reaffirmed.
Mantakoul underscores the paramount importance of National experts in cybersecurity acquiring the skills necessary to deliver first-response services.
The 2023-2030 Australian Cyber Security Strategy, thus, represents a comprehensive and forward-looking approach, aiming to fortify Australia’s cyber defences in an increasingly digitised world.
