The New South Wales government has on Friday published its cybersecurity strategy, taking a whole-of-government view on how to manage risk, borrowing the framework laid out by the National Institute of Standards and Technology (NIST).
The 20-page strategy [PDF] focuses on six themes: Lead, prepare, prevent, detect, respond, and recover, that form the state’s Action Plan.
Notably, the strategy points to the creation of a mandatory cyber incident reporting scheme, inter-agency information-sharing, and cybersecurity-focused training for public servants.
See also: Notifiable Data Breaches scheme: Getting ready to disclose a data breach in Australia
Under the theme of lead, the government this year said it will be focusing on developing shared cybersecurity terminology.
Prepare sees the state develop a “cyber aware culture” based on a risk management approach, establish web portal for training and “collaboration”, and develop a cyber skills pathway model for NSW agencies.
An initiative under prevent will be the introduction of a “secure-by-design” approach for new initiatives, including…
