Home Affairs opens consultation on Zero Trust culture


Tuesday, 10 December, 2024

Home Affairs opens consultation on Zero Trust culture

The Department of Home Affairs has released a consultation paper on embedding a Zero Trust culture, and defining what it wants to see improved in how departments and agencies treat cybersecurity.

The department says it is giving the Australian public an opportunity to provide input and feedback to help shape policies about Commonwealth cybersecurity resilience.

The initial consultation package, open now, introduces the Guiding Principles to embed Zero Trust Culture, and is based on five principles of:

  • identifying and managing cybersecurity risk at an enterprise level
  • understanding accountabilities and responsibilities at all levels
  • knowing and understating the organisation’s most critical and sensitive technology assets
  • maintaining resiliency through a comprehensive cybersecurity strategy
  • going beyond incident planning.
     

Feedback on the consultation paper is sought to shape future direction and plan for the organisational transformations needed to adopt a Zero Trust approach to better manage emerging risks from a rapidly evolving cyber threat landscape.

Consultation is open to all members of the Australian public and the Home Affairs would particularly like to hear from past, current and future Commonwealth providers, cybersecurity subject matter experts and organisations that are planning, or who have commenced, similar cyber resilience uplift programs.

Consultation opened on 2 December and closes on 28 February 2025.

For more information, and to read the consultation paper, visit the Commonwealth Cyber Security Uplift webpage.

Image credit: iStock.com/Supatman

Related News

Half of government agencies falling short on email security measures: report

Lack of consistency across Australian Government bodies leaves critical vulnerabilities in the...

CISA and Microsoft warn of “active attacks” on SharePoint

Alerts have been published active attacks exploiting a remote code execution vulnerability in...

NSW Government agencies have ineffective cybersecurity controls: report

The Audit Office of New South Wales has found that NSW Government agencies still have minimal...


  • All content Copyright © 2025 Westwick-Farrow Pty Ltd