Sense of Security is one of Australia’s most trusted providers of cyber resilience, information security and risk management services.

Latest announcements
© Copyright Sense of Security
 
Industry experts

Australia’s trusted cyber security advisor to government

Our Sense of Security team are highly regarded specialists in cyber security. For nearly 20 years, we have partnered with all levels of government, working on a range of high-security issues. In a shifting landscape, we help government stay one step ahead of data protection and cyber risk.

Working at all levels of government

In the ever-evolving environment of cyber security, Sense of Security is trusted by Australian, state and local governments to help keep our nation’s data secure. We work to the highest levels of compliance with mandated policies.

We are an endorsed supplier to the Australian Government, as well as State and Local governments. Many suppliers to government work with us because we understand both corporate and government needs.

Since 2017, we have been working with the Department of Foreign Affairs and Trade.

Federally, we have worked with most departments and many agencies, including the departments of:

  • Prime Minister and Cabinet
  • Defence
  • Industry, Innovation and Science
  • Infrastructure, Regional Development and Cities

At a state and local level, we participate in the following sourcing arrangements:

  • NSW Government ICT Services Scheme 0020 and the Core & Agreement (Registered and Advanced Registered)
  • Victorian Protective Data Security Standards (VPDSS)
  • Queensland GITC Agreement with the State of Queensland
  • South Australian Government Cybersecurity Portal
  • Premier and Cabinet, Tasmania GITC Specialist ITC Services Panel
  • The Victorian Government eServices Register
  • TNSW Local Government Procurement: LGP115 IT&C Products, Services & Consulting, and
  • Queensland Government Information Security Policy (IS18:2018)
  • Department of Education, Queensland

We support agencies to comply with:

  • Australian Cyber Security Centre (ACSC) Essential 8
  • NSW Cyber Security Policy
  • Victorian Protective Data Security Standards (VPDSS) and
  • Queensland Government Information Security Policy (IS18:2018).

What we do

Securing our government, securing our nation

We are trusted providers of cyber resilience, information security and risk management services.

Our team has many years’ experience working with government departments (and suppliers to government) on data protection, information security management and compliance. We can work with your business on an ongoing or retainer basis.

Some of the services we offer include:

Cyber health check

Our cyber health check is a valuable tool in assessing your organisation’s cyber risk, developing a cyber risk management policy and building cyber resilience.

Red team

Red team exercises are the most rigorous test of your security systems. Sense of Security’s red team think like real attackers to find any weaknesses in your controls.

Penetration testing

Our penetration testing services test the security of your information systems. We identify vulnerabilities and help you fortify your protection.

ISO 27001 compliance

ISO 27001 compliance and certification helps secure your valuable data and grow your business.

PII data security

We can provide advice on how to protect personal identifiable information (PII), which is highly sensitive in nature.

Enterprise cyber security review and data governance

Our enterprise cyber security review (ECSR) will help you with your top-down security management.

Vulnerability management

This service helps you to methodically identify and minimise vulnerabilities in your networks, computer infrastructure and applications.

Sense of Security is your trusted cyber security partner for local, state and federal government.

Call today on 1300 922 923 to discuss your cyber security needs or make an online enquiry here.

Education industry case studies

Australian superannuation fund

Opportunity

Our client is an established superannuation fund which had not previously sought compliance with ISO 27001 for its information security management system.

Sense of Security was engaged to perform high-level ISMS discovery and to audit against the requirements of ISO 27001, as well as to develop a security framework to meet the requirements and an implementation strategy for the system and documentation to support it.

The project involved multiple work streams across several departments over a year.

Achievements

  • Developed all the formalised ISMS documentation including the Charter, Statement of Applicability, Risk Management Framework, Information Security Policy, Access Control Policy and Acceptable Use Policy
  • Performed a risk and maturity assessment
  • Developed a strategy roadmap to improve the risk maturity of the organisation in the future
  • The business achieved certification to ISO 27001
  • Sense of Security is now retained as our client’s cyber security partner to provide services that include vulnerability management, incident response services (24×7) and frequent briefings to the board
  • We now operate our client’s whole-of-business ongoing Security Awareness program

A fin tech service provider to the wholesale markets

Challenge

Our client provides various bespoke market analytics and algorithms to wholesale markets traders via the cloud. All the solutions are bespoke, developed in-house using a cloudfirst approach, resulting in multiple software releases each month. The client wanted to tighten security and future-proof its business by aligning their business to ISO27001 with a view to certification in the short term.

Achievements

  • Sense of Security performed a gap analysis and action plan which brought the client into alignment with ISO 27001
  • The client worked with Sense of Security on DevSecOps security and improving the application and network architecture to improve controls and security
  • Sense of Security performed extensive penetration testing as a validation of the system

Relevant news

Penetration testing: A guide to achieving better outcomes. Read more

Parliament issues and implications – The latest news on government cyber-attacks within Australia. Read more

Dynamic risk assessment – The business case. Read more

Contact us today for a free Cyber Security consultation