grahame coles, chief enterprise solutions officer ... - aiia · the government is currently working...
TRANSCRIPT
Public
Cyber security progress report
Grahame Coles, Chief Enterprise Solutions Officer
Department of Premier and Cabinet
Public
The cyber threat to Australian organisations is
undeniable, unrelenting and continues to grow.
– Australian Cyber Security Centre 2015 Threat Report
Public
Progress update
The Victorian Government has appointed Ernst & Young to develop
network and cyber security standards, which are due for completion
by the end of January.
This work will:
Document the state of the current Victorian Government network environment.
Develop future-state documents (key requirements, network design options and a business case).
Determine value in a network manager role.
Public
Progress update
The government is committed to keeping pace with and
continuously improving its response to cyber security threats and
breaches.
Working with Ernst & Young will help the government determine
ways to reduce the impact of cyber security risk and incidents on its
services.
Public
Current cyber security initiatives
What will the government do to improve the response to and
reduce the impact of cyber security threats and breaches?
Improve cyber security monitoring and response capability.
Increase the security of external gateways.
Increase cyber security expertise within government.
Public
Current cyber security initiatives
How will these improvements be implemented?
Adopt common standards for cyber security incident monitoring and response (for example, the ASD information security manual).
Establish a cyber security monitoring and management service, subject to the business case developed by Ernst & Young.
Public
Cyber security – key focus
The government is currently working with industry (through AIIA
members and non-members) on how Victorian private and public-
sector organisations can work together to combat cyber security.
Public
State emergency response plan: cyber security sub-plan
This sub-plan aims to coordinate a state-wide response (public
and private sector) to a cyber security emergency. It aligns with
the following Victorian emergency management stages:
risk and resilience
coordination and response
relief and recovery.
As part of this sub-plan, the government will develop an
enhanced threat intelligence capability.
Public
State emergency response plan: cyber security sub-plan
Identifies agencies with a role or responsibility in responding,
while also detailing management arrangements and the
impact on Victoria’s emergency management capability.
The plan also:
Integrates the State's involvement in Commonwealth
Government strategies for cyber security.
Coordinates the Victorian government response.
Public
AIIA workshops
The government is planning three workshops with the industry
on other subjects besides cyber security. These workshops will
address:
Information
management
ICT project
delivery
Family
violence
Public
Other ICT-related government projects
Financial systems
ICT blueprint
Financial systems
HR systems
How the government purchases
Project assurance
ICT Dashboard
Workplace environment standard
Public
Questions
enterprisesolutions.vic.gov.au