Weakest links: cyber governance and the threat to mid-sized enterprises
In this new research published in partnership with Macquarie Telecom, the NSC’s Dr Tim Legrand examines the vulnerabilities of medium-sized organisations to cyber threats – an overlooked but high risk aspect of national cyber security.
The governance of cyber security has become a pressing challenge to both the public and private sector. Currently, cyber crime is the second most-reported economic crime, affecting 32 per cent of organisations, at a cost to the Australian economy that is estimated to be as high as $17 billion annually. In partnership with the Macquarie Telecom Group, the National Security College designed a research project to acquire qualitative and quantitative insights into the governance of cyber security risks in Australian medium-sized businesses and government agencies.
Launched today by the Hon Dan Tehan MP, Minister Assisting the Prime Minister on Cyber Security, the research discerned widespread frailties in the governance of cyber security among the executive layers of public agencies and private enterprise. In particular, the findings indicate considerable variation in cyber risk governance arrangements and an absence of cyber risk knowledge at the executive/board level.
Dr Tim Legrand is a Lecturer at the National Security College. His interdisciplinary research concerns the structures, management and processes of public administration. His work draws on, and contributes to political science, law, international relations, security studies and public policy around several research streams that include international policy transfer, evidence-based policy-making, transgovernmental policy networks, the governance of national security and emergency policy, and crisis management. Dr Legrand has worked as a policy consultant for the UK Home Office, the Ministry of Justice, the Department of Health and the Department for Communities and Local Government. More...