Business Insight

Ashurst response to the 2023 – 2030 Australian Cyber Security Strategy Discussion Paper

Digital connections

    In December 2022 the Minister for Cyber Security, the Hon. Clare O'Neil MP announced the development of the 2023-2020 Australian Cyber Security Strategy (the Strategy), marking a new frontier in Australia's national cyber security landscape. 

    Recognising that investment in cyber security is a top priority for the government and industry, Ashurst provided a submission as part of the consultation process addressing key legal, regulatory and operational measures critical to strengthening Australia's cyber resilience.

    The 2023 - 2030 Australian Cyber Security Strategy must address the imminent threat within our existing ecosystem. Industry and government must be incentivised to invest in:

    1. Business transformation to reduce exposure
    2. Uplifting operational security
    3. Building a resilient ecosystem focused on incident response and recovery
    4. Designing regulation and enforcement for resilience

    Future reform no longer needs to target raising awareness of the threat, but should pivot towards building systemic cyber resilience into the ecosystem. Ashurst looks forward to the opportunity to continue discussions and collaboration with the Minister for Cyber Security and Expert Advisory Board.

    Authors: John Macpherson, Partner, Ashurst Risk Advisory; Amanda Ludlow, Partner; Renee Green, Expertise Counsel; Andrew Hilton, Expertise Counsel; Mathew Baldwin, Partner; Miriam Kleiner, Partner; Rehana Box, Partner and John Moore, Director, Ashurst Risk Advisory.


    Ashurst Response to 2023 - 2030 Australian Cyber Security Strategy Discussion Paper

    Download PDF

    This publication is a joint publication from Ashurst Australia and Ashurst Risk Advisory Pty Ltd, which are part of the Ashurst Group.

    The Ashurst Group comprises Ashurst LLP, Ashurst Australia and their respective affiliates (including independent local partnerships, companies or other entities) which are authorised to use the name "Ashurst" or describe themselves as being affiliated with Ashurst. Some members of the Ashurst Group are limited liability entities.

    The services provided by Ashurst Risk Advisory Pty Ltd do not constitute legal services or legal advice, and are not provided by Australian legal practitioners in that capacity. The laws and regulations which govern the provision of legal services in the relevant jurisdiction do not apply to the provision of non-legal services.

    For more information about the Ashurst Group, which Ashurst Group entity operates in a particular country and the services offered, please visit

    This material is current as at 15 April 2023 but does not take into account any developments to the law after that date. It is not intended to be a comprehensive review of all developments in the law and in practice, or to cover all aspects of those referred to, and does not constitute legal advice. The information provided is general in nature, and does not take into account and is not intended to apply to any specific issues or circumstances. Readers should take independent legal advice. No part of this publication may be reproduced by any process without prior written permission from Ashurst. While we use reasonable skill and care in the preparation of this material, we accept no liability for use of and reliance upon it by any person.

    The information provided is not intended to be a comprehensive review of all developments in the law and practice, or to cover all aspects of those referred to.
    Readers should take legal advice before applying it to specific issues or transactions.


    Stay ahead with our business insights, updates and podcasts

    Sign-up to select your areas of interest