Home Affairs opens consultation on Zero Trust culture

The Department of Home Affairs has released a consultation paper on embedding a Zero Trust culture, and defining what it wants to see improved in how departments and agencies treat cybersecurity.

The department says it is giving the Australian public an opportunity to provide input and feedback to help shape policies about Commonwealth cybersecurity resilience.

The initial consultation package, open now, introduces the Guiding Principles to embed Zero Trust Culture, and is based on five principles of:

• identifying and managing cybersecurity risk at an enterprise level
• understanding accountabilities and responsibilities at all levels
• knowing and understating the organisation’s most critical and sensitive technology assets
• maintaining resiliency through a comprehensive cybersecurity strategy
• going beyond incident planning.
   

Feedback on the consultation paper is sought to shape future direction and plan for the organisational transformations needed to adopt a Zero Trust approach to better manage emerging risks from a rapidly evolving cyber threat landscape.

Consultation is open to all members of the Australian public and the Home Affairs would particularly like to hear from past, current and future Commonwealth providers, cybersecurity subject matter experts and organisations that are planning, or who have commenced, similar cyber resilience uplift programs.

Consultation opened on 2 December and closes on 28 February 2025.

For more information, and to read the consultation paper, visit the Commonwealth Cyber Security Uplift webpage.

Image credit: iStock.com/Supatman