The cybersecurity industry has responded to the Australian Government’s Protective Security Policy Framework (PSPF) Direction 002-2024, issued on July 8, 2024. The directive requires Australian Government entities to identify and actively manage the risks associated with vulnerable technologies they manage for themselves and others.
“We applaud this great initiative from the Department of Home Affairs to mandate Australian Government entities to identify and actively manage the risks associated with vulnerable technologies,” said Ashwin Ram, Cyber Security Evangelist at Check Point Software Technologies. “As we’ve seen time and time again, internet-facing vulnerable assets are easy pickings for threat actors as an entry point into any organisation, not just our critical infrastructure. Any government policy changes directing security practitioners to mature their organisations’ cyber risk management capabilities are a step in the right direction. To ensure Australian Government entities proactively reduce the risk of vulnerable assets, the PSPF could go a step further and suggest that Australian Government entities be cautious when procuring assets from…
