Australian Audit Failure June 13 2023: NSW’s local government audit found that 47% of councils did not have a cyber security plan. IT policies and procedures were outdated or not in place at 43 councils.
Read More
Defence Internal Audit Finding 31 May 2023: Australian Senate questioning reveals 435 Chinese-made surveillance devices found at defence sites. Defence initially claimed there was only one device.
Read More
West Australian Councils Audit Report 29 March 2023: Western Australia Auditor General’s Local Government Information Security Audit 2021-22 reports 324 control weaknesses. Cyber security concerns as council’s network rack found in staff toilet.
Read More
West Australian State Government Audit Report March 2023: Auditor General’s State Government Information Systems Audit 2021-22 566 control weaknesses 34 significant. Cases: malicious insiders no MFA, outage from an unauthorised device, former employee accessing finance system one month after termination.
Read More
Queensland Audit Report 16 March 2023: Queensland Audit Office’s State Entities 2022 reports deficiencies in information systems. Only 33 per cent of departments have an effective system managing information security risks.
Read More
Victorian Local Government Audit Report 27 February 2023: Victoria audit reports a significant rise in IT control weaknesses in council systems. Calls for Essential Eight adoption.
Read More
West Australian Audit Report August 2022: Auditor General’s Local Government Financial Audit 2020-21 reports 358 information system control weaknesses. 12 of the 45 entities did not met expectations across all six control categories and 68% of the audit results were below the minimum benchmark.
Read More
West Australian Audit Report July 2022: Western Australia Auditor General tables the 2021 Financial Audit Results for Universities and TAFEs. OAG identified 124 information systems control weaknesses, a 20% increase 2020, 67% of the weaknesses as rated as moderate.
Read More
Australian Audit Report July 2022: Victorian privacy watchdog uncovers third-party infosec risks at four agencies. Agencies only partially effective at ensuring that third parties are securing public sector information.
Read More
Australian Audit Report June 2022: West Australian Local Government Information Systems Audit Report “a significant area of concern”. None of the 12 entities where we performed capability maturity assessments met benchmark.
Read More
Australian Audit Report June 2022: Queensland Audit Office Education 2021 Report finds “all need to strengthen their security”. Deficiencies identified with user and privilege access management, audit log and user activity monitoring.
Read More
Australian National Audit Office Report June 2022: Cyber basics still beyond fed gov as Essential Eight mandate looms. Audit finds most controls “still significantly below” requirement.
Read More
West Australia Council Audit Report November 2021. WA councils fail to detect simulated cyber attack in audit. Only three out of 15 entities did so in a “timely manner”.
Read More
Australian Audit Failure November 2021: None of New South Wales lead cluster agencies have implemented all Essential Eight controls – Premier and Cabinet, Communities and Justice, Customer Service, Education, Planning, Regional NSW, Health, Treasury, and Transport.
Read More