Governance Risk and Compliance
An audit of 4 out of 15 NSW Local Health Districts (LHDs) by the state’s Auditor-General found they failed to meet minimum cyber security requirements, leaving clinical systems vulnerable to attacks that could disrupt healthcare delivery.
Privacy team sizes have plummeted by more than one-third globally, with the median dropping from eight staff to five, according to ISACA's State of Privacy 2026 report released this week.
Sixty Australian organisations face a critical compliance test in January 2026 when the Office of the Australian Information Commissioner conducts its first privacy compliance sweep, targeting entities across six sectors that collect personal information in person. Brisbane-based EzeScan has launched its Automated PII & PCI Discovery and Redaction Suite to address the compliance gap.
Services Australia has been criticised for failing to effectively manage the privacy of client information, with an audit finding critical deficiencies in risk management, data breach notifications and transparency.
The Office of the Australian Information Commissioner (OAIC) has announced it will conduct its first privacy compliance sweep in January, targeting approximately 60 entities across six sectors that collect personal information in person.
Australia's National AI Plan has drawn sharp criticism from legal and academic experts who warn the government's decision to rely on existing legislation leaves organisations exposed to emerging risks in high-stakes automation and automated decision-making systems. The plan abandons previously proposed mandatory guardrails for high-risk AI systems, instead establishing a light-touch regulatory framework built on technology-neutral laws covering privacy, consumer protection and workplace safety.
Only 26% of Chief Data Officers are confident their organisation's data can support AI-enabled revenue streams, despite 81% prioritising investments to accelerate AI capabilities. The findings come from an IBM Institute for Business Value study of 1,700 CDOs across 27 countries and 19 industries.
Organisations face rising threat from advanced malware hiding in encrypted traffic, according to WatchGuard's latest Internet Security Report. Security experts warn that attackers are increasingly using Transport Layer Security to conceal malicious payloads from traditional defences.
Optus Mobile has paid $A826,320 in penalties after scammers exploited vulnerabilities in its identity verification systems. The Australian Communications and Media Authority (ACMA) found Optus operating as Coles Mobile breached telco anti-scam rules on 44 occasions between 23 September and 23 October 2024.
Sentra has launched an AI classification capability designed to identify sensitive information within unstructured data at enterprise scale. The vendor claims its specialised Small Language Models achieve 99% accuracy while processing petabytes of data.
Pages
