Cyber Security Institute

§ Current Worries

Top 3 Worries

  • Regulations
  • Old Firewall Configurations
  • Security Awareness

§ Listening

For the best information

  • The underground
  • Audible
  • Executive Excellence
  • Music (to keep me sane)

§ Watching

For early warnings

  • 150 Security Websites
  • AP Newsfeeds
  • Vendors

Friday, March 18, 2005

Mixed views on AU IT security accreditation

The security community is bitterly divided about any possible national IT security accreditation scheme.  Some say Australia needs one, while others say the whole idea is a waste of time and the government should just implement internationally recognised standards.

A number of security providers were overwhelmingly positive about any possible scheme, which will be the focus of a study carried out by an as-yet undecided consultant to the Department of Communications, Information Technology and the Arts.

“We need an Australian national certification scheme for security professionals to take into account our local security issues, legislation and corporate governance needs,” Alan Bell, who is McAfee’s marketing director for the Asia-Pacific region, told ZDNet Australia.

Paul Macrae, who works at MessageLabs in a business development director capacity, said the whole idea was laughable and that there were international standards that could be better applied.  “This is ridiculous, it’s just people wasting their time when they could be doing something more serious, like actually protecting or educating the small to medium enterprise (SME) market, which is a much more useful thing,” he said.

And James Turner, who manages the security portfolio at analyst firm Frost & Sullivan, agreed with Macrae.  “Australia is not an island on the Internet,” said Turner.,2000061744,39184626,00.htm

Posted on 03/18