Australia’s Cyber Security Strategy 2020
On 6 August 2020 the Australian Government released
Australia’s Cyber Security Strategy 2020 (3MB PDF).
Through the Strategy, $1.67 billion has been invested over 10 years to achieve a more secure online world for Australians, their businesses and the essential services upon which we all depend. It will be delivered through:
- Actions by governments to strengthen the protection of Australians, businesses and critical infrastructure from the most sophisticated threats.
- Actions by businesses to secure their products and services and protect their customers from known cyber vulnerabilities.
- Actions by the community to practice secure online behaviours and make informed purchasing decisions.
While this Strategy is an Australian Government initiative, state, territory and local governments, as well as businesses, academia, international partners and the broader community play an essential role in strengthening Australia’s cyber security.
The Strategy replaced Australia’s 2016 Cyber Security Strategy (2MB PDF).
For cyber security assistance and further information on how to protect yourself online, see cyber.gov.au.
Consultation
The Strategy was informed by extensive consultation. Between September 2019 and February 2020, more than 1,400 people from across the country were consulted. This consultation involved:
- workshops
- roundtables, and
- bilateral meetings.
215 written submissions in response to a call for views were received. 156 of these submissions were public and have been published.
The Industry Advisory Panel was also established to provide strategic advice to support the development of the Strategy.
Protecting Critical Infrastructure and Systems of National Significance
As outlined in the 2020 Strategy, the Australian Government committed to protecting the essential services all Australians rely on by uplifting the security and resilience of critical infrastructure.
For more information see Protecting Critical Infrastructure and Systems of National Significance.
Cyber Security Industry Advisory Committee
On 20 October 2020, Home Affairs established the Cyber Security Industry Advisory Committee to help guide the implementation of Australia’s Cyber Security Strategy 2020. The Committee ensured industry played a continued role in shaping the delivery of short and longer-term actions set out under the Strategy.
Home Affairs dissolved the Committee in 2022, ahead of the development of the
2023-2030 Australian Cyber Security Strategy.
The Committee members were:
- Andrew Penn (Chair) – Former CEO of Telstra
- Cathie Reid AM (Deputy Chair) – Chair of AUCloud
- Darren Kane – Chief Security Officer of NBN Co
- Bevan Slattery – Chairman of FibreSense
- Corinne Best – Trust and Risk Business Leader of PricewaterhouseCoopers Australia
- Patrick Wright – Group Executive Technology and Enterprise Operations of NAB
- Rachael Falk – CEO of Cyber Security Cooperative Research Centre
- David Tudehope – CEO of Macquarie Telecom Group.
Papers and reports
Industry Advisory Committee Annual Report 2021
The Chair of the Committee announced the annual report at the National Press Club on 15 July 2021.
Learn more by referring to the
media release.
Read the
Cyber Security Industry Advisory Committee Annual Report 2021.
Industry Advisory Committee Annual Report 2022
The Chair of the Committee announced the report at the National Press Club on 25 August 2022. Learn more by referring to the
media release.
Read the
Cyber Security Industry Advisory Committee Annual Report 2022.
Industry Advisory Papers
Industry Advisory Committee paper on Ransomware
This paper builds awareness and provides advice for all Australians and their businesses on navigating the current ransomware threat landscape. This includes how best to protect themselves from ransomware attacks.
Read
Locked Out: Tackling Australia's ransomware threat.
Industry Advisory Committee paper on Hybrid Working
This paper explores the cyber security implications of the shift to a hybrid work environment during COVID-19, and how this impacts the risk of cyber attack.
For more information, see the Industry Advisory Committee’s
media release.
Read
Back to Business: Recognising and reducing cyber security risks in the hybrid workforce.
Industry Advisory Committee paper on Cryptocurrency
This paper explores the cyber security and cyber crime implications of cryptocurrency and how these risks could be better mitigated for Australians.
For more information, see the Industry Advisory Committee’s
media release.
Read
Exploring Cryptocurrency.