NSW Government announces a new cybersecurity strategy

The NSW Government has announced a new cybersecurity strategy to better protect essential services and ensure NSW stays ahead of increasingly sophisticated cyberthreats. The government says that with more people relying on digital government systems, stronger cybersecurity is essential to protect people and the services they rely on every day.

The 2026–2028 NSW Government Cyber Security Strategy will reinforce all-of-government coordination to protect against key risks, with a strengthened focus on securing critical infrastructure and third-party supply chains.

The strategy is designed to be responsive, with a two-year planning cycle that allows agencies to focus on today’s risks while adapting quickly as technology evolves, including through AI-enabled attacks and rapidly sophisticated global tactics.

The government says the strategy will lift the public sector’s capacity to identity threats sooner and better coordinate response efforts through Cyber Security NSW, incorporating ID support, ensuring NSW Government systems are better protected.

It reshapes how government protects and oversees its systems by establishing clearer roles and tighter coordination between government agencies and stronger central supports to deliver faster, more consistent and more resilient cyber defences across NSW.

The strategy also outlines a new assurance framework, strengthened audit responsibilities and faster, standardised reporting of cyber incidents, building on mandatory 24-hour reporting that commenced in August 2025.

“Cyberthreats are evolving faster and becoming more sophisticated; that’s why multiple government agencies have collaborated on this strategy, so NSW is more resilient and better placed to stay ahead,” said Minister for Customer Service and Digital Government, Jihad Dib. “With more people relying on digital government services than ever before, protecting data and maintaining trust is essential.

“As cyberthreats become more complex, ‘set and forget’ is not an option. This strategy allows us to adapt and respond to the ever-changing cyber risk landscape.”

“This strategy is based on strengthening our approach to cyber resilience and draws on deep inter-agency collaboration to ensure we work together across government to protect systems and citizens’ information,” said Cyber Security NSW Executive Director Marie Patane. “In the past 12 months we have focused on collaborating closely with Chief Information Security Officers, which has made this strategy possible.

“With the strategy now in place, we have strengthened our foundations to meet the current risk environment and support ongoing security measures to meet whatever the future may hold.”

More information can be found here.

Image credit: iStock.com/Sandwish