Home / intel & cyber / Auditor-general tells government to step up cyber security measures

Website Notifications

Get notifications in real-time for staying up to date with content that matters to you.

Auditor-general tells government to step up cyber security measures

A new report from the national auditor-general has called for federal government departments and agencies to boost their cyber security measures from hackers, particularly relating to increased protection for user accounts with administrative privileges.

Out of 70 findings from a series of conducted audits, over 50 per cent related to the "management of information technology controls", especially the management of privileged user access.


"To reduce the risks associated with this access, the ISM recommends that privileged user access be appropriately restricted and when provided, that the access is logged, regularly reviewed and monitored," the report from the auditor-general said.

"Five moderate and eight minor findings relate to entities that have not implemented adequate logging and monitoring procedures over privileged user accounts. There were also five minor findings relating to access rights for both privileged and regular users not being monitored for appropriateness."

The report went on to recommend that "entities need to focus on processes to monitor IT controls to prevent reccurrence of issues".

In early February, a "limited amount" of non-confidential data was stolen by hackers in a breach against Parliament House, however an investigation revealed that none of the data was deemed sensitive.



"Australian Signals Directorate (ASD) and its Australian Cyber Security Centre will continue to work with DPS to understand the full extent of this network compromise. Meanwhile, the necessary steps are being taken to mitigate the compromise and prevent any harm," a release from ASD said at the time.

"At this early stage, our immediate focus is on securing the network and protecting its users. Proper and accurate attribution of a cyber incident takes time."

Users of the parliamentary computing system were forced to reset their passwords following the breach for "abundance of caution".

Auditor-general tells government to step up cyber security measures
lawyersweekly logo

more from defence connect

Sep 18 2019
Hawkei success for Thales procurement team
Thales Australia’s procurement team has met with success at the ASCI2019 Conference for its eff...
Sep 18 2019
Photo Essay: Pacific Angel 2019 comes to an end
Exercise Pacific Angel 2019, a joint and combined humanitarian assistance operation, has concluded i...
Sep 18 2019
Growing concern about affordability of expanded US bomber fleet paves way for Allied participation
With the US Air Force preparing to reveal its next-generation B-21 Raider bomber, calls for a large...
Recommended by Spike Native Network