Australian Government Seeks Powers to Respond to Active Cyberattacks Against Critical Infrastructure
Australia's Cybersecurity Strategy 2020 will require operators of critical infrastructure to report cyber incidents to ASD in real time and potentially allow ASD into their networks to monitor and defend the networks against cyberattacks. Directors will be help legally responsible for ensuring a certain level of cybersecurity. The plan expands the critical infrastructure designation to include universities, the financial sector, the health sector, and food and grocery sector. The government has released a Consultation Paper regarding these issues.
A strong proactive relationship like this can be a win-win, much like hiring a skilled managed security service provider. The first challenge, once data is flowing, will be defining normal, from connections, to accepted risks of discovered vulnerabilities, which is required to eliminate false positives and cement the working relationship. This process may identify areas for improvement, in which case the third party, in this case ASD, needs to understand not only how improvements can be made, but also how the current state was achieved, to neither jeopardize mission objectives nor resource and budget constraints.
I know of few organizations in the cybersecurity world as effective as ASD in identifying what needs to be done and following through to do it. I am betting initiative this will lead to a model for other nations to follow.
Australia seems intent on being proactive, while much of the world is reactive.
William Hugh Murray
Read more in
SMH: Cyber spy agency to be called in to protect critical infrastructure
Home Affairs: Australia's Cyber Security Strategy 2020 (PDF)
The Register: Australian government wants power to run cyber-response for businesses under attack
Home Affairs: Protecting Critical Infrastructure and Systems of National Significance (PDF)
Home Affairs: Protecting Critical Infrastructure and Systems of National Significance