Cyber security isn’t a set and forget matter!
On 13 March 2025, the Australian Securities and Investment Commission (ASIC) announced they had launched legal proceedings against an investment firm, FIIG Securities Limited (FIIG).
Cyber
A tale of two intertwining records
The CEO of Services Australia (Agency) has recently been found by the Australian Privacy Commissioner (Commissioner) to have interfered with a customer’s privacy after a series of issues involving the Agency intertwining customer records.
Cyber Incident Response: Five things you’re forgetting to plan for
It’s the worst nightmare of every business: you get a call from your IT provider: there’s been suspicious activity on your network. It appears that hundreds or thousands of client records were accessible to a third party for several hours. They are still trying to work out what was accessed, and if anything was exfiltrated. …
Read more
Say it three times, spoken unbroken: Privacy Reforms, Privacy Reforms, Privacy Reforms.
13/09/2024 Today the long awaited first tranche of amendments to the Privacy Act 1988 (Cth) (Privacy Act) entered parliament. The Privacy and Other Legislation Amendment Bill 2024 (Bill) was introduced and read for a first time today in the House of Representatives. In the Explanatory Memorandum to the Bill, the Attorney-General conceded that to date, …
Read more
SOCI Compliance requirements – CIRMP Rules and cyber security frameworks
On 17 February 2023, the Security of Critical Infrastructure (Critical infrastructure risk management program) Rules (CIRMP Rules) were registered under the SOCI Act and set out mandatory requirements for responsible entities.
2023-2030 Australian Cyber Security Strategy Snapshot
On 22 November 2023, the Australian Government released the 2023-2030 Australian Cyber Security Strategy (the Strategy). The goal of the strategy is for Australia to become a world leader in cyber security by 2030, and to build stronger cyber defences to enable our citizens and businesses to prosper, and to build cyber resilience so we can …
Read more
Why good data governance is important and how to get there
In the landscape of Australian Business, government and not-for-profit, the strategic management of data has become increasingly vital. However, as we see time and time again in data breaches, data can also pose a significant risk to organisations if not properly managed.
Digital ID Act passed
The Digital ID Bill passed Federal Parliament in May and will come into force in November 2024. Overall, the legislation aims to give Australians secure and effective ways in which to verify their identify for use in online transactions with government and business.
Counteracting Ransomware
Ransomware attacks present an escalating threat to global security, one which threatens a broad range of organisations ranging from government agencies to small businesses. Driven by an increasingly interconnected IoT landscape and the use of outdated or legacy systems, ransomware poses a growing threat to Australia’s critical infrastructure – including the healthcare, financial services, transportation, …
Read more
Using AI recruitment tools
General protections from unlawful discrimination under the Fair Work Act 2009 (Cth) apply to both employees and prospective employees. It is important to ensure that reliance on tools such as AI in recruitment processes do not infringe on the protections from discrimination that are afforded to prospective employees. The list of attributes that are protected …
Read more