Category: Thought Leadership
-
The password security tips businesses should use to stop hackers in their tracks
As originally published in inside small business, on March 25, 2025 David Sandell is the CEO of CI-ISAC, a not-for-profit organisation providing cyber threat intelligence (CTI) sharing services. In this piece, David shares 14 password tips to protect your business from cyber attacks. Cybercrime is on the rise across Australia, and it’s not just large corporations…
-
Data-driven insights & Accountability: Empowering Informed Decision-Making
In this 6th & final instalment of our series on strengthening Australia’s cyber threat intelligence sharing, we arrive at a crucial aspect often overlooked: how we analyse and operationalize the cyber threat information we share. Simply gathering and exchanging data, even within a sovereign framework, is insufficient. To effectively combat sophisticated cyber adversaries, we must…
-
Forever Chasing the Ambulance: Why Reactive, Informal Cyber Threat Sharing Fails
In the previous instalments of this series, we’ve established the need for sovereign cybersecurity capabilities & highlighted the crucial difference between raw data and actionable intelligence. Now, we turn our attention to how we share cyber threat information, arguing that the method of sharing is just as critical as the information itself. Relying on unstructured,…
-
Sovereign Cybersecurity: Safeguarding Australia’s Critical Infrastructure
Trust, control, and resilience: These principles are paramount in cybersecurity, especially when it comes to protecting national critical infrastructure. This fourth installment explores why sovereign capability is essential for secure information sharing and a stronger national cybersecurity posture. In today’s interconnected world, the battleground for modern warfare has expanded to include the digital realm. Critical…
-
Pandora’s Box of Business Cyber Risk: Navigating the Perils of Informal CTI Sharing
Australia’s cybersecurity landscape is at a crossroads. While the spirit of collaboration and information sharing is strong, our current reliance on informal networks poses significant risks to businesses and critical infrastructure alike. This series explores the shortcomings of these ad-hoc approaches and makes the case for a structured, sovereign solution to truly bolster our collective…
-
The gaps that remain in our cyber security
The Federal Government’s annual cyber threat report, released in late 2023, noted that malicious cyber activity continues to pose a risk to Australia’s security and prosperity. In fact, nearly 94,000 reports were made to law enforcement, which is about one incident being reported every six minutes. From scam emails and hacks of personal medical information…
-
Threat Intelligence is essential for good Cyber Security
Threat intelligence plays a crucial role in cyber security by investigating and analysing cyber attacks to form proactive incident response plans. As the threat landscape evolves, threat intelligence has also evolved, with the adoption of technologies like AI and ML. This shift has allowed cyber security professionals to move from reactive to proactive strategies, preventing…
-
Critical Infrastructure protections and implementation in Australia and elsewhere
We have previously outlined how CI-ISAC fits into the broader Australian intelligence sharing landscape and also how CI-ISAC operates alongside government initiatives. CI-ISAC is specifically positioned as a member-owned, not-for-profit entity, we are able to curate the lessons learned from across our diverse membership and distribute this in a form that can benefit CI entities…
-
How do we protect Critical Infrastructure from cyber attacks?
Critical Infrastructure (CI) owners and operators must contend with a multitude of risks spanning ‘all hazards’ to their assets. To varying degrees, these risks threaten their ability to maintain ongoing operations and deliver core services to the populations that depend on them. Taking a risk-based approach A risk-based approach is key to protecting CI entities,…
-
Connecting Critical Infrastructure to Mitigate Threats and Bolster Collective Defence
Australia’s Critical Infrastructure entities are increasingly being targeted by sophisticated cyber-attacks. There are now several Government policy and legislative initiations that address cyber assurance and reporting. But is that enough? What must the private sector do for itself? Cyber threat actors are cooperating with each other more and more to achieve their objectives. Our defensive…
You must be logged in to post a comment.