Submission on developing Horizon 2 of the 2023-2030 Australian Cyber Security Strategy

Robust cyber security underpins social resilience and national security. Digital technologies are becoming increasingly interconnected, and their associated cyber risks and impacts are growing. These risks have the potential to disrupt essential services and critical infrastructure, threaten sensitive data, and economically impact Australian businesses.  

ATSE’s submission recommends uplifting R&D across the economy, with a significant focus on cyber security for emerging technologies relevant to the country’s critical infrastructure, including core sectors such as water, energy, health, transport and defence. Strengthening global partnerships may also provide an opportunity to foster joint R&D and build resilience across cross-border threats. Additionally, ATSE recommends strengthening industry coordination through the continued development of the National Voluntary Data Classification Framework and its universal adoption if proven to be effective.  

There is an opportunity to target the skills gap that exists in cyber security by promoting and expanding microcredentials, short courses and professional development opportunities. This is particularly important for Small and Medium Enterprises (SMEs), which experience heightened vulnerabilities. ATSE also recommends expanding and updating cyber security awareness campaigns to children and teenagers, including the Act Now, Stay Secure Campaign. This can be complemented by leveraging existing evidence-based resources to improve effectiveness. 

Recommendations from ATSE’s submission 

Recommendation 1: Uplift in R&D across the economy, including in cyber security for emerging technologies in critical infrastructure. 

Recommendation 2: Strengthen global partnerships in cyber security to foster joint R&D and build resilience against cross-border threats.  

Recommendation 3: Continue supporting the development of the National Voluntary Data Classification Framework, aiming for universal adoption if proven effective. 

Recommendation 4: Target the cyber security skills gaps across the workforce by promoting and expanding cyber security microcredentials, short courses, and professional development, prioritising access for Small and Medium Enterprises (SMEs). 

Recommendation 5: Expand and update cyber security awareness campaigns, including the Act Now, Stay Secure Campaign, to children and teenagers, including by leveraging existing evidence-based resources.