Cyber security funding welcomed by industry

ACS calls for registration of ICT professionals and more research and development funding.

The federal government’s $1.46 billion funding in improvements to cyber security networks and establishment of an Australian Cyber Security Centre has received a largely positive response from information security professionals who say it is a good step forward.

Prime Minister Julia Gillard said the funds would help strengthen Australia’s most sensitive networks against attacks from cyber criminals and nation states. The Cyber Security Centre will be operational by the end of 2013 and combine existing security capabilities across the Attonery-General’s Department, Defence, the Australian Security Intelligence Organisation (ASIO), Australian Federal Police (AFP) and the Australian Crime Commission (ACC) in one location.

Gartner Australia research director Rob McMillan told Computerworld Australia that Gillard’s announcement has been a long time coming.

“This is a good step forward, it’s more evolutionary than revolutionary,” he said. “If you look at the major bullet points of the National Security Strategy (PDF), a lot of these have been talked about before such as co-operation with industry and the trusted information security network.”

McMillan added that the Australian government will continue to make security improvements to their technical infrastructure but this will not stop the cyber criminals from trying to find ways in.

“This is the natural order of security. The 'bad guys' keep trying to get in and the good guys will keep building stronger defences. An arms race is a good way to describe it.”

Australian Computer Society (ACS) CEO Alan Patterson said that alongside the recommendations of the National Security Strategy, the ACS would like to see the registration of ICT professionals to allow trusted authorities to share timely updates and information about security threats.

“These are standards that industry and the public takes for granted as being integral to the practice of many other high trust occupations such as law, medicine and accountancy,” he said in a statement.

Patterson also called for Australia to invest in research and development into security technologies which are relevant to protecting computing systems and information infrastructures in the digital economy.

“These include secure distributed information and network systems, mobile software systems, secure applications and Web-based online services.”

According to Huawei Australia chairman John Lord, the federal government’s commitment to bolster Australian security defences was encouraging.

“We stand ready and willing to work with industry and government to make this vision a reality,” he said in a statement. “Globally, Huawei is already working in partnership with governments and security agencies in this critical area.”

In October 2012, Lord proposed the establishment of a national cyber security evaluation centre in Australia to test the security credentials of technologies being implemented into critical infrastructure projects.

A Telstra spokesman said the telco would review details of the cyber security component which formed part of the National Security Strategy and look for opportunities to work with government and other parties to protect Australian interests.

“Cyber security is a key priority for government and industry alike. This announcement includes some significant initiatives that will improve and strengthen our joint efforts in the fight against cyber threats,” the spokesman said in a statement.

Trend Micro Australia and New Zealand managing director Sanjay Mehta said the funding sent a “strong signal” that the Australian government viewed cyber threats as a credible threat to national security.

“Whether or not the figure [of $1.46 billion] announced is sufficient or not, this is something that only time will tell, but it’s certainly a step in the right direction,” he said in a statement.

“If business and government cannot confidently do business online then this will be a huge drag on the economy as a whole.”

Mehta added that it will be “interesting” to see how the Australian Cyber Security Centre and the National Broadband Network (NBN) interact as the network will see every Australian resident, business and government department connected with an unlimited amount of bandwidth.

“This is a huge carrot to cyber criminals but we cannot be scared of this threat because the opportunities are so huge,” he said. “This means that we need a centralised approach to cyber security in Australia in preparation for the NBN connected future.”

Palo Alto Networks Australia and New Zealand senior consultant Tony Kirkham said that while the government cyber security initiative will have a positive impact, attacks are constantly evolving and require constant vigilance for Australia to remain adequately protected.

“It is vital that government agencies, state governments and the private sector maintain awareness of cyber-security risks and ensure that appropriate security controls are deployed.”

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Tags: Huawei, Gartner, Palo Alto, National Security Strategy, trend micro, australian computer society, Julia Gillard, cyber security, Telstra

Fortinet, McAfee, Trend Micro, Bitdefender battle in socially-engineered malware prevention test

READ THIS ARTICLE
DO NOT SHOW THIS BOX AGAIN [ x ]
Comments are now closed.
CSO Corporate Partners
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Cloud Security and Compliance Solutions

Manage and visualize the security and compliance of VMware, physical, and hybrid-cloud infrastructure from the RSA Archer eGRC Platform.

Latest Jobs
Security Awareness Tip

Incident handling is a vast topic, but here are a few tips for you to consider in your incident response. I hope you never have to use them, but the odds are at some point you will and I hope being ready saves you pain (or your job!).


  1. Have an incident response plan.

  2. Pre-define your incident response team 

  3. Define your approach: watch and learn or contain and recover.

  4. Pre-distribute call cards.

  5. Forensic and incident response data capture.

  6. Get your users on-side.

  7. Know how to report crimes and engage law enforcement. 

  8. Practice makes perfect.

For the full breakdown on this article

Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.