>At 10:33 PM 10/11/2016, Stephen Loosley wrote: >>The federal government is set to offer voluntary cyber-security â*health >>checksâ* for Australiaâ*s top 100 ASX-listed companies, in partnership with >>the Australian Securities and Investments Commission (ASIC).
JanW <[email protected]> replied on Fri, 11 Nov 2016 06:58:53 +1100 >[emphasis added above] >So, the richest companies in the country are being offered something from the >government that should be part of their standard risk management procedures in >their IT area? The mind boggles. Not only that, but it's all-but-useless. (1) ASIC knows a lot less than the CIOs and SIOs of the top-100 corps (2) It's merely answers given by the corps and fed back to them (3) It's anonymous, and yet they're going to compare each successive year's responses to identify improvements? We need some genuine leadership in the security area, but this is the weakest form of tokenism, and should be derided. -- Roger Clarke http://www.rogerclarke.com/ Xamax Consultancy Pty Ltd 78 Sidaway St, Chapman ACT 2611 AUSTRALIA Tel: +61 2 6288 6916 http://about.me/roger.clarke mailto:[email protected] http://www.xamax.com.au/ Visiting Professor in the Faculty of Law University of N.S.W. Visiting Professor in Computer Science Australian National University _______________________________________________ Link mailing list [email protected] http://mailman.anu.edu.au/mailman/listinfo/link
