Close this search box.

We are creating some awesome events for you. Kindly bear with us.

Victorian government to appoint Chief Information Security Officer as part of the state's first ever Cyber Security Strategy

Victorian government to appoint Chief Information Security Officer as part of the state's first ever Cyber Security Strategy

The Victorian government released its first ever Cyber Security Strategy to ensure government services and information are kept safe from cyber threats.

The Cyber Security Strategy shifts from an agency by agency approach, to a whole-of-government approach, as the government seeks to sustain strong and resilient cyber security defences that protect the delivery of public services in Victoria.

The strategy builds on the principles of being collaborative, enabling, proven, scalable, proportional and sustainable. The strategy has 23 points and is organised under five priorities of engagement, planning, partnering, service maturity and capability.


As part of the Cyber Security Strategy, the government will appoint a Chief Information Security Officer (CISO) within the Department of Premier and Cabinet (DPC) by next month to oversee the government response to the ongoing cyber threats and co-ordinate cross government action

The CISO will not replace the individual responses and accountability within each government agency to address risks in the cyber landscape, nor will it assume responsibility within these agencies to address the standards issued by the Office of the Victorian Information Commissioner. Rather, the CISO will coordinate cross-government responses in those areas where a whole-of-government approach is preferable, more efficient and will provide better security outcomes.

A quarterly cyber security briefing and status report will be developed and presented to the Victorian Secretaries Board and the State Crisis and Resilience Committee every 3 months, from September 2017. A communication and engagement program for cyber security awareness within government will be operated from December 2017.


The government will develop cyber emergency governance arrangements with Emergency Management Victoria (EMV[1]) by October 2017, so that risks are better understood and planned for, as part of ongoing work to protect government assets and services.

The government will identify and promote common cyber security services that can be accessed and shared and undertake cyber security operational health check every 12 months, starting from March 2018 and June 2018 respectively. An ICS (industrial control systems)/ SCADA (supervisory control and data acquisition system) cyber security working group will be formed by September 2017, reporting ultimately to the State Crisis and Resilience Council. The group will develop and implement a three year multi-agency cyber security exercising program to build resilience, readiness, and capability.


Partnerships will be strengthened across all levels of government and the private sector to share best practice, intelligence and insights.

In conjunction with Victorian Managed Insurance Authority (VMIA[2]), the government will identify high inherent risk in small and medium sized entities and establish a cyber capability uplift program including cyber security training, educational events, programs, and seminars.

The state government will also work with CERT Australia, the national computer emergency response team, to align with the National Cyber Security Exercise Program initiative stemming from Australia’s Cyber Security Strategy.

The government is in the process of establishing a Victorian Government information sharing and incident response service comprising of contract arrangements and appropriate onsite service provider. It is expected to be ready by September 2017.

Whole-of-government subscriptions for internet security and information security services will be established (by September 2017) and an integrated and federated Security Operations Centre model and implementation plan will be developed (by February 2018).


The government will develop a workforce plan by March 2018 to attract, develop and retain skilled cyber security public sector workers.

The strategy builds on the work being undertaken by the Labor Government to ensure Victoria has the best new digital technology to deliver the modern services expected by the community and that these services and the citizen data they contain are resilient against cyber-attacks.

Special Minister of State, Gavin Jennings, joined experts and IT industry representatives today to launch Victoria’s Cyber Security Strategy. He said, “As organised crime and others become more sophisticated in hacking and disrupting digital services, it’s crucial government steps up to better protect against these cyber security threats. Victoria’s first ever Cyber Security Strategy ensures we can stay ahead of the cyber criminals and develop the infrastructure, systems and processes needed to protect government services and information.”

Minister for Small Business, Innovation and Trade, Philip Dalidakis, said, “Victoria is already a hub of digital innovation, so it makes sense that we use our existing tech knowledge and talent pool to be a hub of cyber security as well. The cyber security industry is growing quickly and will surpass $100 billion in value in the next few years. It’s an industry that will create jobs and boost our economy and we need to be a big part of it.”

Recent months have seen announcement of the establishment of   CSIRO’s Data61 Cybersecurity Innovation Hub, the Oceania Cyber Security Centre, the collaboration with Oxford University’s Global Cyber Security Capability Centre, and a Melbourne-based node of the Commonwealth Government’s Cyber Growth Centre in Victoria.

[1]EMV has the lead role in maintaining and coordinating whole-of-government strategy and policy for critical infrastructure resilience in the state.

[2] VMIA provides insurance against damage to state assets or liabilities to third parties arising from cyber incidents.


Qlik’s vision is a data-literate world, where everyone can use data and analytics to improve decision-making and solve their most challenging problems. A private company, Qlik offers real-time data integration and analytics solutions, powered by Qlik Cloud, to close the gaps between data, insights and action. By transforming data into Active Intelligence, businesses can drive better decisions, improve revenue and profitability, and optimize customer relationships. Qlik serves more than 38,000 active customers in over 100 countries.


CTC Global Singapore, a premier end-to-end IT solutions provider, is a fully owned subsidiary of ITOCHU Techno-Solutions Corporation (CTC) and ITOCHU Corporation.

Since 1972, CTC has established itself as one of the country’s top IT solutions providers. With 50 years of experience, headed by an experienced management team and staffed by over 200 qualified IT professionals, we support organizations with integrated IT solutions expertise in Autonomous IT, Cyber Security, Digital Transformation, Enterprise Cloud Infrastructure, Workplace Modernization and Professional Services.

Well-known for our strengths in system integration and consultation, CTC Global proves to be the preferred IT outsourcing destination for organizations all over Singapore today.


Planview has one mission: to build the future of connected work. Our solutions enable organizations to connect the business from ideas to impact, empowering companies to accelerate the achievement of what matters most. Planview’s full spectrum of Portfolio Management and Work Management solutions creates an organizational focus on the strategic outcomes that matter and empowers teams to deliver their best work, no matter how they work. The comprehensive Planview platform and enterprise success model enables customers to deliver innovative, competitive products, services, and customer experiences. Headquartered in Austin, Texas, with locations around the world, Planview has more than 1,300 employees supporting 4,500 customers and 2.6 million users worldwide. For more information, visit


SIRIM is a premier industrial research and technology organisation in Malaysia, wholly-owned by the Minister​ of Finance Incorporated. With over forty years of experience and expertise, SIRIM is mandated as the machinery for research and technology development, and the national champion of quality. SIRIM has always played a major role in the development of the country’s private sector. By tapping into our expertise and knowledge base, we focus on developing new technologies and improvements in the manufacturing, technology and services sectors. We nurture Small Medium Enterprises (SME) growth with solutions for technology penetration and upgrading, making it an ideal technology partner for SMEs.


HashiCorp provides infrastructure automation software for multi-cloud environments, enabling enterprises to unlock a common cloud operating model to provision, secure, connect, and run any application on any infrastructure. HashiCorp tools allow organizations to deliver applications faster by helping enterprises transition from manual processes and ITIL practices to self-service automation and DevOps practices. 


IBM is a leading global hybrid cloud and AI, and business services provider. We help clients in more than 175 countries capitalize on insights from their data, streamline business processes, reduce costs and gain the competitive edge in their industries. Nearly 3,000 government and corporate entities in critical infrastructure areas such as financial services, telecommunications and healthcare rely on IBM’s hybrid cloud platform and Red Hat OpenShift to affect their digital transformations quickly, efficiently and securely. IBM’s breakthrough innovations in AI, quantum computing, industry-specific cloud solutions and business services deliver open and flexible options to our clients. All of this is backed by IBM’s legendary commitment to trust, transparency, responsibility, inclusivity and service.