Vision
The 精东传媒app of Southern Queensland will be renowned for our innovation and excellence in education, student experience, research and engagement.
Strategic imperatives
- Strategic growth
- Differentiation
- Innovation
- Sustainability
The 精东传媒app of Southern Queensland will be renowned for our innovation and excellence in education, student experience, research and engagement.
Disruption to Service |
External threat actors (criminals, nation states, activists) seek to deny access to (DoS), disrupt, deface and inappropriately access and use our systems and resources. If we don't protect our systems from external malicious disruption or influence, critical business process will be negatively impacted effecting the student experience, our ability to produce research and engage with our communities. |
Reputational Risk |
Cyber incidents can be highly visible in the media and broadly reported and discussed. If we fail to broadly address cyber threats and account for reputational considerations, we may lose market standing, suffer impact due to perceived negativity about our brand, and degradation of our partnerships. |
Loss of Data |
Data is valuable and desirable for cyber criminals, nation states and malicious individuals to attain (theft) or deny access to (ransomware). Threats can be external actors, external actors who have managed to gain internal access, or internal. As a custodian of data (including sensitive research), its loss can not only affect UniSQ, but also those we hold data on behalf of. If we don't protect our data, we run the risk of reduced user confidence, negative media coverage, negative external compliance scrutiny and impacted business processes. |
Financial Impact |
Key business process are increasingly digitalised and critical to 'normal' business operation. If we don't pay attention to cyber fraud, financially motivated threats, or business interruption motivated attacks, UniSQ faces a potential financial impact, impacting our sustainability and growth imperative. |
Third Party Risk |
We partner with and consume services from external organisations. They have risks which we must be aware of and manage to mitigate impact upon UniSQ. If we don't effectively manage our external partners, we risk failing to meet our aspirations and expectations due to failing in our supply chain and our partners. |
Regulatory and Compliance |
Government, regulators, funding bodies and partners have expectations and requirements. Expectations for protections against foreign interference is increasing and is forecast to continue to increase. If we fail to maintain compliance, we will be subject to negative public and regulator perception, and increased cost of compliance going forward. |
To support UniSQ's objectives by securely enabling its initiatives and operations while protecting it from threats to the availability, integrity and confidentiality of systems and data.
We will benchmark against the ASD/ACSC Strategies to Mitigate Cyber Security Incidents, and extend and adapt to meet the specific needs and challenges of the Higher Education sector.
Objectives
|
Govern | Protect | Detect | Respond & Recover |
|
|
|
|
How we will connect activity to strategy | |||
|
|
|
|
Major cyber security initiatives | |||
|
|
|
|
How we will report | |||
|
|
|
|