{"id":117313,"date":"2020-08-05T19:40:44","date_gmt":"2020-08-06T02:40:44","guid":{"rendered":"https:\/\/www.paloaltonetworks.com\/blog\/?p=117313"},"modified":"2020-08-05T19:34:50","modified_gmt":"2020-08-06T02:34:50","slug":"policy-australia-2020-cyber-security-strategy","status":"publish","type":"post","link":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/2020\/08\/policy-australia-2020-cyber-security-strategy\/","title":{"rendered":"Australia's 2020 Cyber Security Strategy"},"content":{"rendered":"

A Record Investment to Provide a More Secure Online World for All Australians<\/h2>\n

On 6 August, the Australian Government released its<\/span> 2020 Cyber Security Strategy<\/span><\/a> with an investment of more than 1.6 billion Australian dollars \u2013 representing the largest-ever Australian Government financial commitment to cybersecurity.\u00a0\u00a0<\/span><\/p>\n

The 2020 Strategy builds on the<\/span> 2016 Cyber Security Strategy<\/span>, <\/span><\/i>which invested AU$230 million to advance and protect Australia\u2019s interests online across 33 initiatives.<\/span><\/p>\n

The new Strategy was developed following an extensive consultation led by the Government, which received over 215 submissions from across Australian Government bodies, industry and members of the public. The Australian Government also met with more than 1,400 people from across the country in face-to-face consultations, including workshops, roundtables and bilateral meetings. In addition, the Minister for Home Affairs, the Hon. Peter Dutton MP, established a <\/span>Cyber Security Strategy Industry Advisory Panel to provide strategic advice and guidance on the Strategy\u2019s development.\u00a0<\/span><\/p>\n

The Strategy includes a number of initiatives, and articulates key actions and responsibilities for the Government, business and the community.\u00a0<\/span><\/p>\n

 <\/p>\n

Actions for Government \u2013 Disrupting Cybercrime and Building Partnerships for a National Threat Picture<\/span><\/h2>\n

The Government has made it clear in the Strategy that it is determined to disrupt the serious criminal activity saturating the dark web. The Strategy cites recent estimates suggesting that cyber incidents cost the Australian economy up to AU$29 billion \u2013 that's a staggering 1.9% of Australia\u2019s GDP.<\/span><\/p>\n

To address this, the Government has signaled that it will introduce legislation to bolster the powers of law enforcement and criminal intelligence agencies to identify and disrupt individuals engaging in serious criminal activity online. The Government will invest over AU$88 million to bolster the Australian Federal Police\u2019s capabilities to investigate and prosecute cyber criminals and create a fund to co-invest in counter-cybercrime capabilities with the states and territories.\u00a0\u00a0<\/span><\/p>\n

Strengthening public-private partnerships and threat information sharing have also been identified as a key pillar for action for the Government.\u00a0<\/span><\/p>\n

The Government will strengthen its capacity to prevent or respond to malicious cyber activity, including by investing AU$62.3 million in a classified national situational awareness capability and delivering a enhanced threat-sharing platform. To bolster partnerships between businesses and governments, the Australian Government will increase its investment in the Joint Cyber Security Centres \u2013 a key initiative under the 2016 Cyber Security Strategy designed as cyberthreat and information-sharing hubs in key state capital cities \u2013 will receive AU$67 million to enable greater cybersecurity collaboration with state governments and industry (including critical infrastructure).\u00a0<\/span><\/p>\n

We welcome these initiatives, which will promote public-partnerships to combat cyber threats. Only by working together will we be able to identify and address cyber threats at scale.\u00a0\u00a0\u00a0<\/span><\/p>\n

 <\/p>\n

Actions for Business \u2013 Securing Australia\u2019s Critical Infrastructure, SMEs and Promoting Security by Design\u00a0<\/span><\/h2>\n

In our increasingly interconnected world, improving the security and resilience of critical infrastructure entities is crucial to protecting Australia\u2019s economy and national security. The Government has outlined the introduction of an enhanced security regulatory framework to bolster the nation\u2019s resilience and ensure Australia can act quickly in an emergency. The framework includes security obligations for critical infrastructure providers and Government assistance to industry in response to immediate and serious cyberattacks on Australia\u2019s most critical systems. The package will also provide over AU$66 million to assist Australia\u2019s major critical infrastructure providers in assessing their networks for vulnerabilities and collaborating to enhance their cybersecurity posture.\u00a0<\/span><\/p>\n

Small and medium businesses also get a shout-out, with the Government noting it will work with large businesses to assist Australian small to medium businesses in upgrading their cybersecurity and growing their cybersecurity awareness. This will be accomplished, for example, by providing cybersecurity information and tools as part of bundles of secure services <\/span>(such as threat blocking, antivirus and cybersecurity awareness training).\u00a0\u00a0<\/span><\/p>\n

Finally, the Government notes the importance of working with industry to promote security by design \u2013 encouraging internet service providers to deliver secure internet services and noting the release of a<\/span> \u201cVoluntary Internet of Things Code of Practice\u201d to help consumers <\/span>understand the security and privacy implications of IoT devices they purchase.\u00a0<\/span><\/p>\n

Australia has been lucky to avoid a catastrophic cybersecurity incident against its businesses to date. It is widely acknowledged that the loss of an essential service could have devastating impacts across Australia. These measures are important in improving security and resilience in critical infrastructure sectors.<\/span><\/p>\n

 <\/p>\n

Actions for the Community \u2013 Improving Cybersecurity Awareness\u00a0<\/span><\/h2>\n

The Government has announced measures to expand its efforts to raise awareness of cybersecurity threats and drive uptake of safe and secure online behaviors across the community. The measures include a new public awareness-raising campaign, direct engagement with the community via a training program for small businesses, older Australians and Australian families, expanding the Government\u2019s 24\/7 cybersecurity advice hotline for families and older Australians and, importantly, increasing funding to support victims of cybercrime.<\/span><\/p>\n

These measures are welcome \u2013 educating all Australians on what steps they can take to secure their information and systems is critical in the fight against cyber adversaries. Australia has a history of large-scale, national campaigns aimed at educating citizens of all ages about steps to take to reduce certain risks, including the \u201cSlip, Slop, Slap\u201d campaign, which was touted as the reason for a significant reduction in skin cancer in Australia. We are pleased to see community education and awareness of cybersecurity being elevated and identified as a\u00a0 key priority in the national agenda.<\/span><\/p>\n

 <\/p>\n

The 2020 Cyber Security Strategy Comes at an Important Time<\/span><\/h2>\n

There could not be a more important time to release this Strategy. With the COVID 19 pandemic, more Australians are online than ever \u2013 whether it's for work, healthcare, education or entertainment. We have also seen a number of businesses accelerate their digital transformations or move online for the first time. At the same time, we have witnessed dozens of <\/span>COVID-19-themed phishing campaigns<\/span><\/a> targeted at Australians and Australian businesses of all sizes. On 19 June, Australian Prime Minister Scott Morrison announced that Australian organisations \u2013 across a range of sectors and levels \u2013 were being targeted by a sophisticated state-based cyber actor. The 2020 Strategy is critical in articulating how Australia will work to address cyber threats. It is an important milestone in a series of initiatives the Australian Government continues to make to improve the country\u2019s cybersecurity posture \u2013 including the 30 June 2020, announcement of an AU$1.35 billion investment in the Cyber Enhanced Situational Awareness and Response (CESAR) package to ensure that the Australian Signals Directorate can identify more cyber threats, disrupt more foreign cybercriminals, build more partnerships with industry and governments globally and protect more Australians.<\/span><\/p>\n

Cybersecurity is a collective opportunity and a shared responsibility. Every part of the Government, business and the community has a role to play in implementing this Strategy.\u00a0<\/span><\/p>\n

We congratulate the Australian Government on delivering the 2020 Cyber Security Strategy and on committing to a record investment in cybersecurity. Palo Alto Networks looks forward to working with the Australian Government to realise the goals of the 2020 Cyber Security Strategy.<\/span><\/p>\n

Sarah Sloan is Head of Government Affairs and Public Policy, ANZ, Palo Alto Networks.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"

Australia\u2019s 2020 Cyber Security Strategy plans a record investment to provide a more secure online world for all Australians.<\/p>\n","protected":false},"author":663,"featured_media":108494,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[484,6769],"tags":[447,123,6074],"coauthors":[7248],"class_list":["post-117313","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-government","category-public-sector","tag-australia","tag-government2","tag-policy"],"jetpack_featured_media_url":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-content\/uploads\/2020\/03\/IMG_2009.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/117313","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/users\/663"}],"replies":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/comments?post=117313"}],"version-history":[{"count":2,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/117313\/revisions"}],"predecessor-version":[{"id":117329,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/posts\/117313\/revisions\/117329"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media\/108494"}],"wp:attachment":[{"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/media?parent=117313"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/categories?post=117313"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/tags?post=117313"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/origin-researchcenter.paloaltonetworks.com\/blog\/wp-json\/wp\/v2\/coauthors?post=117313"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}