Partnerships between APAC governments and private entities, as well as cyber security technology providers, are gaining momentum as part of public-private cooperation models. These joint efforts may encompass sharing threat intelligence, boosting cyber capabilities, conducting research, and engaging in joint investigations.
With cyber threats escalating in APAC, emanating from ransomware operators and nation-state actors, the aspiration is for enhanced cooperation between governments and businesses to yield a unified response.
What constitutes a cyber security public-private partnership?
National cyber security public-private partnerships typically represent a collaborative setup between governmental bodies and private sector enterprises aimed at bolstering a nation’s digital security.
These collaborations, whether formal accords or informal alliances, entail public agencies responsible for cyber security collaborating with private entities such as tech companies or critical infrastructure operators to improve threat response and resilience.
Countries like the U.S. and the UK have been at the forefront of fostering closer ties in the realm of cyber security, especially for safeguarding critical infrastructure, acknowledging the necessity for intimate collaboration given the transition of many state assets into private ownership through privatization. Presently, the cyber security public-private partnership is deemed as a crucial societal endeavor.
What is driving the expansion of cyber security public-private partnerships?
In an interview with TechRepublic, Sabeen Malik, Vice President of Global Government Affairs and Public Policy at cyber security entity Rapid7, observed that the upsurge of PPPs, including in APAC, has transpired as administrations acknowledge that a substantial portion of telemetry data, technology, and resources essential to combating cyber threats now reside within the private sector rather than under government purview.
“Governments are realizing that they are not the sole entities capable of assessing a large segment of the threat landscape, and that much of the real-time data they seek is situated beyond conventional government channels,” she remarked. “Governments are not internally establishing a mechanism to oversee all the pathways of data flow.”
Escalation in assaults across the APAC region
The surging attack surface outstripping governments’ control coincides with the mounting threat landscape. Research by Check Point highlighted that the APAC region encountered the most significant year-on-year spike in weekly attacks in 2023, registering an average of 1,835 attacks per organization, marking a 16% uptick.
According to Statista, numerous globally most targeted industries in 2023, such as manufacturing and financial services, hold significance for the APAC domain. State-backed cyber operations, encompassing cyber espionage, also present significant geopolitical and security apprehensions, particularly within financial services, amplifying concerns.
Australia fostering stronger ties with private segment
The Australian Cyber Security Strategy 2023-2030 underscores robust PPPs to position as a cyber security frontrunner. This strategy illustrates how APAC jurisdictions are embracing cooperation with the private industry, both individually and cooperatively, to fortify cyber security.
Inception of a fresh Cyber Incident Review Board
The Australian government has tabled a proposal for a Cyber Incident Review Board, jointly devised with industry stakeholders, to conduct impartial incident appraisals for enhancing Australian cyber security. Insights gleaned from these reviews will be imparted to the general public and enterprises to fortify the national cyber resilience and avert similar mishaps.
Disrupting ransomware business models
There exists a concerted effort between the government and private sector to mitigate ransomware attacks. A commitment has been made to jointly draft alternatives for mandatory, no-fault, non-liability ransomware reporting with industry associates. This endeavor aims to facilitate the reporting of ransomware incidents and payments, aiding in the formulation of a ransomware playbook to equip enterprises for handling and bracing against such assaults.
Collaboration of Australian Signals Directorate with Microsoft
The ASD’s Cyber Threat Intelligence Sharing platform, enabling participating entities to exchange threat data, has been integrated with Microsoft’s Sentinel platform. This conjoined effort to create a “universal cyber threat intelligence system” will permit Microsoft’s Australian clientele engaged in the CTIS to swap cyber threat intelligence promptly and extensively to combat threats.
Formation of an Executive Cyber Council
An Executive Cyber Council has been established to enhance the sharing of threat intelligence across the Australian economy and propel public-private cooperation on other pivotal objectives of the Australian cyber strategy. The consortium consists of senior representatives from Australia’s private sector entailing associations like The Business Council of Australia and renowned brands such as the Commonwealth Bank of Australia, Optus, and supermarket chain Coles Group.
Development of national threat thwarting capabilities
The Australian government, in collaboration with industry accomplices through the National Cyber Intel Partnership, is test-running an automated near real-time threat-blocking capability that will augment existing government and industry platforms.
About Author
