Search filters applied: performance audit AND cyber security .
Actions for Detecting and responding to cyber security incidents
A report released today by the Auditor-General for New South Wales, Margaret Crawford, found there is no whole-of-government capability to detect and respond effectively to cyber security incidents. There is very limited sharing of information on incidents amongst agencies, and some agencies have poor detection and response practices and procedures. The NSW Government relies on digital techno
Actions for Electronic Information Security
The Government is not able to provide assurance that it is safeguarding its holdings of sensitive personal information because its policy has not been properly implemented. This is likely to remain the case until there are clear, mandatory, minimum standards that agencies sign up to, and scrutiny of performance against these standards is strengthened. Parliamentary reference - Report number #207 - released 20 October 2010
Actions for Use of the internet and related technologies to improve public sector performance
Notwithstanding the considerable effort, it is not apparent that the Government's vision can be fully achieved without increased efforts. Based on the current position, to ensure that the Government's vision can be achieved the Audit Office is of the view that the following key issues need to be urgently addressed: more robust mechanisms are needed to monitor, review and report publicly on progress and benefits a greater emphasis should be place
Actions for Managing cyber risks
Following our 2018 audit of detecting and responding to cyber security incidents, this audit will examine how effectively agencies identify and manage their cyber security risks. This will include consideration of their compliance with the NSW Cyber Security Policy that came into effect in February 2019.