If your teams can’t tell you much about their privacy and IT security obligations, the answer is no. Privacy and security obligations involve considerably more than just knowing what phishing is.
I find the phrase “human error” which is often used after a privacy breach, very disappointing. Somehow there’s acceptance that no one can do anything about “human error”. In fact, humans have been coming up with solutions to human error, forever.
For those organisations that want to get in front of privacy and online security risks, there’s a lot happening now:
You can install all the technology you want to protect you from a cyber attack but, if you don’t motivate and utilise your greatest asset…
Much has been said about Australia’s vulnerability to a cyber-attack. Since COVID, and the move to a working from home model, that vulnerability has increased.
After the deaths of four people on a theme park ride, Ardent Leisure has been charged under the Work Health and Safety Act (Qld)
This important report concerning the hack on the ANU’s systems was released publicly last week by Brian Schmidt, Vice-Chancellor.
The answer is to embed your ICT Security Policy.
The introduction of the Notifiable Data Breaches (NDB) scheme last month will shine a spotlight on ICT security and compliance for Australian organisations.