All security outcomes in cyberspace are determined by individuals, whose behaviour is shaped by their social setting, whether organisational or cultural. Yet there has been little evidence globally of the necessary adjustment of policy or practice that gives due weight to the social science dimensions.

Australian policy response to the coronavirus outbreak has followed a two-step process, with containment the highest priority (the bio-medical and humanitarian view) and with economic and social consequences (a whole of society view) occupying a clear follow-on priority.

Cybersecurity attacks have become a growing focus for many businesses and governments. A challenge in responding is to determine the level and allocation of cyber-security budgets.

This 2023 paper reflects on a proposed system for benchmarking and evaluating cybersecurity strategies, assessing both the strategy's design and its implementation. In doing so, it critiques existing approaches as Australia emerges from what the government has described as a period of “cyber slumber.”

Australia's existing public and private capacity, despite the increased emphasis on the cyber domain, is likely insufficient to counter the full range of threats it faces in cyberspace.

Since 2022, Australia has significantly expanded its cyber and intelligence capabilities through major new investments. The scale of this expansion has prompted discussion of its geopolitical drivers and the implications for public and parliamentary oversight.

Australia’s 2025 cyber response plan introduces a “nationally catastrophic” incident category, but preparedness for such a crisis remains unclear. This paper argues that cyber civil preparedness and resilience must become central to national security policy.

In this 2016 paper, Greg Austin argues that Australia will need to develop complex responsive systems of decisionmaking for medium intensity war that address multi-vector, multi-front and multitheatre attacks in cyber space.

There should be a single overarching evaluation of the entire strategy (to ensure coherence between policy pillars) every four years as well as separate evaluations of each policy pillar, every two years.