The Strategy is to bring a whole of government approach to cyber security to help Victorian Government digital infrastructure better respond to the evolving cyber security environment. The strategy notes that the security environment is becoming significantly more sophisticated, and as such a more sophisticated approach to cyber security is warranted. This is addressed in 23 action points in 5 categories of action.
Previously, cyber security has been managed on an agency by agency basis, with guidance from sources such as the Victorian Protective Data Security Framework. The strategy aims to leverage all Government learning in the area, in recognition that not all agencies have the same resources to deal with the cyber threat.
The key element announced is the creation of the Chief Information Security Officer within the Department of Premier and Cabinet. Mr John O'Driscoll has been appointed to the role and will be responsible for overseeing Government's response to the cyber threat, developing best practice, providing assurance, reporting internally on the Government's cyber security status and coordinating cross Government action. You can read the media release announcing the appointment here.
The strategy also aims to enhance Government capability in terms of strategic planning, reporting and technical proficiency, both through partnering agreements and a dedicated push for skilled workers.
We anticipate rapid change in this space, with 19 of the 23 action points due to be delivered by April 2018.
If you'd like to discuss managing the legal risks relating to a cyber security breach, please contact us:
Managing Principal Solicitor