New cyber security solution to counter threats to the ACT public service

Auditor-General Michael Harris urged agencies to speed up work to secure their computer systems. Photo: Supplied.

The ACT Government is beefing up its defences against potential cyber-attack with a new three-year contract for a cyber incident response solution.

The Chief Minister, Treasury and Economic Development Directorate has contracted Canberra-based specialist cyber security company DGplex to provide a cyber incident response solution that will enhance the government’s ability to detect and respond to cyber threats and protect its information assets.

The system will oversee government services such as cloud platforms, and through modern capabilities, including artificial intelligence, it will augment and improve the current ability to detect and respond effectively to cyber threats.

The $2.3 million contract comes in the wake of audit reports last year that found the government was falling short on cyber security and was vulnerable to hacking, fraud and the loss of data.

My Public Sector

Federal, State, Territory? Sign up for the week's best public sector news delivered straight to your inbox. See it all without a paywall.

By submitting your email address you are agreeing to Region Group's terms and conditions and privacy policy.

Last month’s Budget also allocated $10 million over four years to establish a new Cyber Security Centre to improve its resilience to potential cyber-attacks and better protect the government ICT network.

In 2019, a cyber attack stole thousands of public servants’ contact details.

According to the contract, the solution should mean broader support for capturing security information from applications, infrastructure and cloud systems, providing richer information such as understanding the difference between a personal or work-based device, location of access, or type of account being used.

It should also save time and resources for already stretched staff, sorting benign events from higher-risk incidents with far greater accuracy and prioritisation.

When a high-risk activity is detected, an automatic response should deliver corrective actions in near real-time to reduce its impact.

DGplex will be required to provide quarterly reports detailing breaches and actions taken to remedy them and prevent them from recurring, and a summary of the usage and growth patterns to forecast possible future costs.

It will also have to provide a road map and planning for better functionality each quarter, including any guidance the government may need.

Last year, the ACT Audit Office reviewed government agency controls over its computer systems as part of its annual financial audits and identified weaknesses in how they are operated and administered, and urged agencies to speed up work to secure them.

Auditor-General Michael Harris said these weaknesses exposed the ACT Government’s systems and data to higher than necessary risks which could lead to errors and fraud, unauthorised access to sensitive information, cyber security attacks, loss of critical data, and the inability to promptly recover systems in the event of a significant disruption or disaster.

He said the weaknesses related to how user access to the ACT Government network and applications is managed; the take-up of application whitelisting, a technique used to only allow authorised applications to operate on systems; and the monitoring of appropriate user activity.

In a separate report, Mr Harris also found that the government’s cybersecurity policy was lacking, with low data security awareness among staff.