NSW Government Cyber Security Policy Compliance Clock Is Ticking for Agencies

Unveiled late last year, the New South Wales Government’s new Cyber Security Policy is designed to improve the digital defences of all state government agencies. The problem, however, is that many remain confused about exactly what they need to do. Under the policy, agencies must provide a written report to the government’s Chief Information Security Officer (GCISO) by August 31 each year. The report must detail how the agency’s security status ranks against a variety of criteria, any high or extreme risks being faced, and a full list of data stores regarded as the ‘crown jewels’ for the agency.