After Home Affairs boss Mike Pezzullo told senate estimates yesterday that mandatory reporting is being considered “as an extension of the cyber security strategy”, there has been reactions galore from many cyber security think tanks. Jacqueline Jayne, Security Awareness Advocate, KnowBe4 APAC in her response stated, “When it comes to mandatory reporting of cyber attacks I think it’s a move in the right direction as we need more visibility and transparency to encourage more conversations about the actual impact and ferocity of cyber attacks or near misses. This would lead to more conversations and more understanding with an opportunity to educate and bring awareness of cybersecurity incidents to the mainstream. Reporting can be used as a tool to share and to learn from these incidents.”
“Mandatory reporting on cyber incidents can provide a positive move towards collaboration. Data can be used as a learning opportunity so that we can share findings, share stories, and then potentially share solutions within the cyber community. Furthermore this brings the conversation to the broader community as cybersecurity is everyone’s responsibility,” she further added.