Note: Where available, the PDF/Word icon below is provided to view the complete and fully formatted document
 Download Current HansardDownload Current Hansard    View Or Save XMLView/Save XML

Previous Fragment    Next Fragment
Monday, 3 November 2003
Page: 21881


Mr McClelland asked the Attorney-General, upon notice, on 9 September 2003:

(1) Which individuals, organisations and agencies are represented on the Business-Government Task Force on Critical Infrastructure.

(2) Where and on what dates has the Task Force met.

(3) Who attended each meeting.

(4) What was the agenda and what were the outcomes of each meeting.

(5) When and where will the Task Force next meet.


Mr Ruddock (Attorney-General) —The answer to the honourable member's question is as follows:

(1) Members of the Business-Government Task Force on Critical Infrastructure were:

Mr John McFarlane, Chief Executive Officer, ANZ Banking Group;

Mr Graeme John, Managing Director, Australia Post;

Mr Barry Jones, Executive Director, Australian Petroleum Production and Exploration Ltd;

Mr Richard G Humphrey AO, Managing Director and Chief Executive Officer, Australian Stock Exchange Ltd;

Mr David Murray, Chief Executive Officer, Commonwealth Bank of Australia;

Mr Nino Ficca, Chief Executive/Managing Director, SPI PowerNet Pty Ltd, Electricity Supply Association of Australia (Distribution);

Mr Keith Orchison, Managing Director, Electricity Supply Association of Australia (Generation);

Mr Terry Campbell, Executive Chairman, JB Were;

Mr Lindsay Maxsted, Chief Executive Officer, KPMG;

Mr Chris Corrigan, Managing Director, Lang Corporation (Patricks);

Mr John Hartigan, Chief Executive Officer, News Limited;

Mr Ian Brown, A/g Chief Executive Officer, NRMA Insurance Group;

Mr Chris Anderson, Chief Executive Officer, Optus Cable and Wireless;

Mr Mike Bridge, Asia-Pacific Global Risk Management/Financial Services Leader, PriceWaterhouseCoopers;

Mr Geoff Dixon, Chief Executive Officer, Qantas;

Dr Ziggy Switkowski, Chief Executive Officer, Telstra Corporation;

Dr John Langford, Executive Director, Water Services Association of Australia;

Mr Robert Tonkin, Chief Executive Officer, ACT Chief Minister's Department;

Dr Col Gellatly, Director General, NSW Premier's Department;

Mr Paul Tyrrell, Secretary, NT Chief Minister's Department;

Dr Leo Keliher, Director-General, QLD Department of the Premier and Cabinet;

Mr Warren McCann, Chief Executive, SA Department of the Premier and Cabinet;

Ms Linda Hornsey, Secretary, TAS Department of the Premier and Cabinet;

Mr Terry Moran, Secretary, VIC Department of the Premier and Cabinet;

Mr Mal Wauchope, Director-General, WA Department of the Premier and Cabinet;

Mr Mick Keelty APM, Commissioner, Australian Federal Police;

Mr Graeme Thompson, Chief Executive Officer, Australian Prudential Regulation Authority;

Mr David Knott, Chair, Australian Securities and Investments Commission;

Mr Dennis Richardson, Director-General, Australian Security Intelligence Organisation; and

Mr Ron Bonighton, Director, Defence Signals Directorate.

(2) The Task Force met once only in Sydney on 26 March 2002, with some Task Force members also attending the workshops on the following day.

(3) Attendees at the Business-Government Task Force on Critical Infrastructure meeting were:

Mr Graeme John, Managing Director, Australia Post;

Mr Barry Jones, Executive Director, Australian Petroleum Production and Exploration Ltd;

Mr Jeff Olsson, Australian Stock Exchange Ltd;

Mr David Murray, Chief Executive Officer, Commonwealth Bank of Australia;

Mr Nino Ficca, Chief Executive/Managing Director, SPI PowerNet Pty Ltd, Electricity Supply Association of Australia (Distribution);

Mr Geoff Willis, Chief Executive Officer, Hydro Tasmania;

Mr Terry Campbell, Executive Chairman, JB Were;

Mr Lindsay Maxsted, Chief Executive Officer, KPMG;

Mr Maurice James, Director, Terminals, Lang Corporation (Patricks);

Mr Keith Gomes, Director, Strategy and Marketing, Optus Business;

Mr Robert Deakin, Director, Global Risk Management Solutions, PriceWaterhouseCoopers;

Mr Geoff Askew, General Manager, Security and Investigations, Qantas;

Mr David Harris, National General Manager, Corporate Security, Telstra Corporation;

Mr Alex Walker, Chief Executive, Sydney Water;

Mr Andrew Rice, Senior Manager, Policy, ACT Chief Minister's Department;

Dr Col Gellatly, Director General, NSW Premier's Department;

Ms Jenny Blokland, NT Department of Justice;

Dr Leo Keliher, Director-General, QLD Department of the Premier and Cabinet;

Mr Paul Edgar, A/g Manager, Strategy and Innovation, SA Dept of Administration and Information Services;

Ms Rebekah Burton, Deputy Secretary, TAS Department of the Premier and Cabinet;

Mr Peter Harmsworth, Secretary, VIC Department of Justice;

Mr Bill Tinapple, Director, Petroleum, WA Department of Minerals and Petroleum;

Mr Tim Morris, Director, Investigations and Technical Operations, Australian Federal Police;

Mr Graeme Thompson, Chief Executive Officer, Australian Prudential Regulation Authority;

Mr David Knott, Chair, Australian Securities and Investments Commission;

Mr Dennis Richardson, Director-General, Australian Security Intelligence Organisation; and

Mr Ron Bonighton, Director, Defence Signals Directorate.

(4) The agenda for the meeting was:

DAY ONE

Ministerial welcome;

Opening remarks by joint chairpersons, Mr Robert Cornall, Secretary, Attorney-General's Department and Mr John Rimmer, Chief Executive Officer, National Office for the Information Economy;

Introduction of key-note speaker;

Key-note presentation by Dr Andrew Rathmell, Research Leader, RAND Europe and Chief Executive Officer of the Information Assurance Advisory Council, United Kingdom - Building a trusted and secure business environment: accelerating change to maintain the competitive advantage;

Questions;

Outline of Proposed Government Activities;

Discussion on How best to effect change: Business' expectations of Government;

Recommendations and resolutions; and

Close.

DAY TWO (Workshops)

Workshop on Critical infrastructure protection: a national security perspective presented by speaker Dennis Richardson, Director-General, Australian Security Intelligence Organisation and facilitated by Robert Cornall;

Workshop on Sector interdependencies and shared vulnerabilities: is the information we rely upon safe and secure? presented by speaker John Donovan, Managing Director, Pacific, Symantec Corporation and facilitated by John Rimmer;

Video presentation on Sleepless Frights II: The Human Factor [ANZ Bank security training video];

Presentation by Simon Hewitt, Head of Global Information Security, ANZ Banking Group;

Workshop on Information security awareness for managers: What do they really need to know? presented by speaker Ron Bonighton, Director, Defence Signals Directorate and facilitated by John Rimmer;

Workshop on Business continuity planning and disaster recovery presented by speaker Mark Heers, Technical Business Consultant, Asia-Pacific, EMC Corporation and facilitated by Robert Cornall; and

Conclusions and close.

The outcomes of the Task Force meeting were six recommendations for critical infrastructure protection. These recommendations were:

Recommendation One:

The Commonwealth and the States and Territories, in consultation with the private sector, should develop a strategic overview of risks to critical infrastructure and, as a first step, commit to prioritisation of tasks building on the work that has already been done to assess vulnerabilities in the telecommunications, transport and public utilities sectors, by 30 September 2002.

Recommendation Two:

The Commonwealth, in cooperation with the private sector and the States and Territories, should build on existing mechanisms, such as the Standing Advisory Committee on Commonwealth-State Cooperation for Protection Against Violence (SAC-PAV) and arrangements for emergency management, to ensure systems and procedures are in place to adequately protect the critical infrastructure.

Recommendation Three:

The Commonwealth should build a learning network among the key public and private sector organisations to improve systematic, strategic responses to the security of the National Information Infrastructure - separate from, but linked to, physical critical infrastructure protection and SAC-PAV.

The network should have a clear brand, clear responsibilities, protocols, priorities and a central point of contact for authoritative statements, but should also have redundancy and linkages to key international resources.

A public/private sector partnership to enhance national information infrastructure assurance should be developed out of this Business-Government Task Force for periodic consultation and advice to the network.

AusCERT should be strengthened as a central component of a national system for early warning and advice on immediate response and risk management. Issues to be discussed include funding and whether their advice would continue to be available for a fee only to member organisations, as at present.

The Commonwealth, in consultation with the private sector, should examine major threats and interdependencies in telecommunications and banking as an example of specific, targeted consideration between the relevant agencies and organisations.

Recommendation Four:

The Commonwealth, States and Territories should review their legislative frameworks for sharing information so as to facilitate the supply of information by business, ensure its confidentiality and exclude liabilities.

Recommendation Five:

The Commonwealth should develop models of good critical infrastructure assurance, taking into account relevant standards, in consultation with the private sector and the States and Territories.

Recommendation Six:

The Commonwealth, States and Territories should examine ways to encourage investment in the security and resilience of critical infrastructure.

(5) There are no plans for the Task Force to reconvene.