Audit background Cyber Security NSW (CS NSW) was established in 2019 in response to the 2018 performance audit report, Detecting and Responding to Cyber Security Incidents. That audit found that there was no whole-of-government capability to detect and respond effectively to cyber security incidents. CS NSW is relatively new and operates within the Department of Customer Service (DCS) with a large scope of responsibilities. As such, the focus of this au

Schools collect and maintain detailed student data, including sensitive personal information. Schools can also require or encourage students to use third party software applications for learning and other school related activities. This audit will examine how effectively schools ensure student data is secure – both within their own systems and when provided to third parties. This audit may also examine the effectiveness of information security governance