04/03/2025
Strengthening Australia’s Cyber Resilience, Omni and CSCRC Launch Hardening Cyber Security Supply Chain Guide
Virtually all of Australia’s critical infrastructure is reliant upon digital systems, and ensuring the cyber security of these systems is vital to the effective management of cyber supply chain risk. Consequently, it is critical that government, law enforcement and industry stakeholders consider their cyber supply chain and the potential risks or weaknesses it may present.
An organisation’s cyber supply chain includes any product or entity that touches, houses or controls and organisation’s data, and the value of any data they entrust to other businesses. Cyber security supply chain risk is the potential for harm or compromise that may arise from cyber security suppliers and their supply chains, products, services and personnel.
In recent times, significant cyber security supply chain attacks have highlighted the ability of malicious actors to exploit vulnerabilities of third-party suppliers, either to gain access to the systems of a specific company or to undertake cyber operations at scale. This is why it is essential that organisations fully understand their cyber supply chain and establish clear expectations and responsibilities with third-party suppliers regarding their cyber security responsibilities to ensure overall risk is mitigated and managed.
The Hardening Cyber Security Supply Chains guide was created by Omni and the Cyber Security Cooperative Research Centre (CSCRC) to assist critical infrastructure owners and operators, and their information and communications technology (ICT) enablers, to develop a stronger understanding of cyber security supply chain risks.
The guide collates key guidance from experts in the field including the Australian Signals Directorate, the Department of Home Affairs’ Cyber and Infrastructure Security Centre, the National Institute of Standards and Technology and the European Union Agency for Cybersecurity in a way that is accessible to people with limited experience in cyber security.
With years of experience in providing tailored and proactive protective security and International Standards Organisation (ISO) compliance support to clients, Omni stands ready to assist organisations with their cyber security supply chain needs. This goes beyond cyber security risk identification – we partner with our clients to identify their cyber supply chain, understand the risk, set cyber security expectations, audit for compliance and monitor and improve cyber security supply chain practices.
Hardening Cyber Security Supply Chains A Guide For Australian Critical Infrastructure