Dr Feakin presenting at #2017ACSC
“We are dealing with significant issues, significant compromises and we're still learning. We’re continuing to evolve.” - Clive Lines, Operational Lead, Australian Cyber Security Centre #2017ACSC
PILLARS & PLANS: Up close with Australia's Cyber Security strategy
T By Chris Cubbage
he Cyber Security Sector Competitiveness Plan (CSSCP), released in Sydney on April 20 and launched by Arthur Sinodinos, Minister for Industry, Innovation and Science seeks to break down how market judgements have been determined, the impacts on the economy and a roadmap for the cybersecurity sector. The CSSCP proposes Australia has competitive advantages in the cybersecurity domain, with a domestic market heating and global market growing exponentially, with most of the growth occurring in the Indo-Pacific region. Some of the key areas being focused on by the Government and quasi-industry led initiative of the Australian Cyber Security Growth Network (ACSGN) is on integrated platforms and software, professional services, GRC (Governance, Risk & Compliance) and as a leading exporter of cybersecurity education. But there are barriers. These include current economic limitations and national issues of a skills shortage, a poor bureaucratic culture lacking in SME procurement and gaps and blockages between the academic research and commercialisation domains. The CSSCP cites Gartner which reported “in 2016 the total external spending on cyber security by Australians and Australian organisations reached A$3.46 billion, and it is estimated that organisations spent a further A$919 million on their internal cyber security functions. To put that in
46 | Australian Cyber Security Magazine
context, Australia's external IT spending in 2016 was around A$85 billion.” The CSSCP projects over the next decade, the Australian cyber security industry could triple in size, with revenues rising to A$6 billion by 2026, from just over A$2 billion today. It should be noted that the existing A$4.8 billion (20122013) physical security sector, in particular the A$2.4 billion electronics sector was not considered or consulted as part of the CSSCP’s body of work. With this in mind, there is an opportunity for the security sector, as a whole, to potentially reach and aggressively seek to have a A$20 billion market size within the next 10 -15 years as it tackles not just cyber threats but also jihad, transnational organised crime and rogue nation states. Bringing the cyber and physical security sectors closer together, rather than keeping them apart, could have been a part of this plan and remains an opportunity. Despite not taking this approach, the CSSCP “provides a roadmap to strengthen Australia's cyber security industry and pave the way for a vibrant and innovative ecosystem.” The CSSCP claims, “It articulates the steps and actions required to help Australia become a global leader in cyber security solutions, with the aim of generating increased investment and jobs for the Australian economy.” Speaking in Canberra in March, Craig Davies, ACSGN’s Chief Executive Officer, confirmed the primary mission is to ‘create’ a Cyber Security Industry in Australia. “Our