�
PREDICTIVE INTELLIGENCE
Future of cybersecurity and critical infrastructure in Australia
The Australian government needs to consider the specific OT , ICS and IoT cybersecurity concerns in its protection of critical infrastructure plan , explains Diego Betancur , Lead Technical Sales Engineer , APAC for Operational Technology and IoT security company , Nozomi Networks . He responds to a detailed consultation paper from The Department of Home Affairs .
s the Australian
A government continues its push for cybersecurity , critical infrastructure has come into focus . The Department of Home Affairs ( DHA ) has released a detailed consultation paper outlining the main collaboration initiatives between the government and industrial entities to protect critical infrastructure and systems of national significance .
These are the systems we can ’ t do without – energy , food , transport and water . They are prioritised during bushfires and other extreme weather and as threats become more digital , the government is correctly putting a framework in place to protect them from the growing threat of cybercrime . In reviewing , and eventually acting on the consultation paper , the government needs to consider the disproportionately low level of cybersecurity maturity in relation to existing Operational Technology ( OT ) and industrial control systems ( ICS ), as well as a lack of OT / ICS cybersecurity skills .
Breaking down the paper
Within the paper , there are a number of standout discussion points :
1 . Entities will have a responsibility to take an all-hazards approach when identifying and understanding risks .
2 . Government should use its unique position and resources to share aggregated threat information , work with critical infrastructure entities of all levels of maturity to build their capability and empower entities to appropriately protect themselves when faced with a serious threat .
3 . Some entities will already have a mature capability allowing them to voluntarily provide the government with the information required and receive actionable , aggregated information in return . Some entities will be at the other end of the maturity spectrum and may need to build their capability first .
4 . Government heard that Australia ’ s critical systems are facing a worsening threat environment and the nation needs to address vulnerabilities in supply chain security , control systems and Operational Technology .
Several factors must be addressed in order to effectively respond to these points , and the paper is missing a few areas that should also be considered . www . intelligentciso . com
33