Queenslanders develop IT security kit

The toolkit was developed by the Queensland Department of Justice and Attorney General in conjunction with the state's police and health services.

The toolkit CD uses an interactive questionnaire approach to allow government departments to measure their compliance against the Queensland Government's own Information Standard 18.

"[We] put together a reasonably interactive type of CD-ROM which runs through a series of questions which provides a result in certain categories," says Stephen Moskwa, the Department of Justice and Attorney's information security manager. "The government has been good at coming up with policies, procedures and standards.... this goes the next step; here's this toolkit you can use to show you how you're going."

Unlike federal government agencies, the states don't receive the clear support of the Defence Signals Directorate (DSD). The DSD is charged with helping the federal government secure its information, as well as other, more clandestine tasks like intercepting signals intelligence. "They don't have a clear mandate to support state governments," Moskwa says.

The CD-ROM was put together with the help of Microsoft and Data3.

Moskwa and others who worked on the toolkit hope state governments other than Queensland's will find it useful, and say the Victorian government has shown interest in using the kit.

• Related stories

• Alerts

Add your opinion

1. Microsoft ?...bwahahhahahahaaa.............. Anonymous -- 27/03/06

   *insert cd*
   *autorun*
   "Question 1, do you use anything other than Microsoft products or Data3 services? <yes>, <no>"...
   
   *type <yes>*
   
   BEEP BEEP...Whirrrr..whirrr...Zoop, Zooop !!!!
   
   WARNING !!!!! WARNING !!!!.. You're not secure !!!!!!
   Please delete all viral, communist, terrorist supporting non Microsoft Genuine Advantage malware immediately and report to your nearest Data#3 centre for re-education !!!
   
   Whoop Whooop !!!
   
   Seriously, some brain-dead public servant probably thought this was a good idea. I know, here's an idea, why not bring in some experts, real experts that is...like..umm....ex DSD people perhaps ? Not the MCSE CISSP wannabe's that currently infest the security services space.

   • Reply to comment
   • Report offensive content

   1. DSD - real security people??? Anonymous -- 28/03/06

      Real security – DSD, give me a break!!!
      
      Having spent sometime working with agencies like DSD, GCHQ, and GCSB I can say that they employ some brilliant minds, but that does not instantly translate to in-depth understanding of the commercial (government included) realities of using COTS technology securely, where security decisions are driven by ‘real’ business drivers.

      • Reply to comment
      • Report offensive content

   2. Pffffft.................... Anonymous -- 29/03/06

      The closest you've got to any of those acronyms is googling for what they mean.
      
      Chaps like you wouldn't be permitted into the car park.
      
      Then again, I suppose the janitorial staff could claim to have "worked" there after all.. you're in luck.
      
      Hope you enjoy Gitmo !

      • Reply to comment
      • Report offensive content

   3. Spook wannabe! spook -- 29/03/06

      Get paid half that of your commercial peers and spend majority of your time performing cryptanalysis, trying to interpret vague pieces of information into a real piece of intelligence and argue the merits of various crypto algorithm – yeap I know the drill. I bet that you where one of those civilian recruits - so don’t beat me up pogue!

      • Reply to comment
      • Report offensive content

   4. mwahahahhaha....... Anonymous -- 31/03/06

      Nah, I work in the private financials sector long term contracting in IT Security at $125/hr, 40hrs/week.
      
      Read it and weep boy.
      
      Hurrah for me.

      • Reply to comment
      • Report offensive content

2. Their Information Standard 18 is interesting... Anonymous -- 27/03/06

   It isn't redacted for "track changes" before publishing and it references obsolete versions of the PSM and of ACSI.
   
   Doesn't bode well..... they should do more development and less cut 'n paste googling.

   • Reply to comment
   • Reply to story
   • Report offensive content

3. flob your jt on the table Anonymous -- 31/03/06

   now i know that you are full of crap! enjoy your dream land, you're probably still in your infancy of your career, amazed at the concept of MLS based OS's, believe that cryptography is still the saviour of man-kind and running around quoting ISO 17799, COBIT, et al.
   
   good luck chump, and yeap i too work in the commercial sector enjoying a good income. a nice reward from my years in the service.

   • Reply to comment
   • Reply to story
   • Report offensive content

   1. Did you think that up all by yourself? Anonymous -- 01/04/06

      You're just a poser wannabe who got into daddy's trade magazines one day and googled for all the big words and acronyms you found.
      
      You're nothing.
      
      When you leave school you'll find it pays to be respectful to your betters, now run along and get back to work boy, you missed a bit on my front bumper! No tip for you!

      • Reply to comment
      • Report offensive content

4. dad's army captain mainwaring -- 04/04/06

   depends on how you measure experience - years or decades? i know how i measure my decades of experience, so private pike run along and come back when you’ve earned your stripes.
   
   captain mainwaring

   • Reply to comment
   • Reply to story
   • Report offensive content

   1. Hey, what are you doing here?.. Anonymous -- 04/04/06

      You're supposed to have suffered a stroke and died during a spell on the toilet.
      
      Fitting really.
      
      Next time you decide to do a lame post please choose your alias a little more carefully, huh?

      • Reply to comment
      • Report offensive content

   2. Creative spark Anonymous -- 07/04/06

      Your lack of creativity speaks volumes about the type of advice that you’d be dishing out to your poor customers! I bet that you still think that security is all about ACF2, RACF, Top-Secret (I didn’t google those), and that B2B is still facilitated by EDI and its all bad!!!!
      
      Military experience doesn’t equate to being IT security expert. I can say this because I served my time and am now sick and tired of encountering ex-military colleagues who treat the civilian world as retirement and deliver advice that is based on what was happening in the 80’s.
      
      You’re not one of those are you????
      
      Again, if you are Pike, run along like the good little pogue that you are and really learn what COBIT, SOX, WS* and a whole bunch of grab bag of standards, regulations and technologies really mean. Oh and here is a tip for you – it’s driven by risk!!!!
      
      BTW if you want something to Google the google COSO ERM, AS4360, HB:231 and start to learn and deliver real value to your suffering customers.

      • Reply to comment
      • Report offensive content

   3. You're mentally unbalanced. Anonymous -- 07/04/06

      Seriously man, you need help....
      
      Go on, tell us all about your alien abduction, or maybe your theory on how the international gold markets are controlled by the Knights of Templar.
      
      You're not too popular with the ladies, are you ?
      
      Anyway, chop chop , back to work, my car needs vacuuming again, and don't skimp on the polish this time boy !
      
      Have a nice day now.

      • Reply to comment
      • Report offensive content

   4. Psychologist says I’m fine Anonymous -- 08/04/06

      I have a note from my psychologists that says I’m fine but then you wouldn’t believe that would you? :P
      
      Again your lack of imaginative flare, poor grasp of the English language, demonstrates to me that you spent too much time being truant at school and if you did spend time in the services (which I very much doubt), I bet you would have spent it abusing your liver down at the bar with cheap subsidised booze.
      
      Tell you what, I’ll clean your 1985 Holden if you clean my 2005 BMW 540i?
      
      Deal!!!
      
      Go back and play with your monkeys, oh and BTW you really can’t say that you’ve done anything special unless you’ve spent time with a well funded agency and the DSD doesn’t count!
      
      They’re like little kids scratching around in the dark, under funded, blind to what really goes on – but you already knew that!

      • Reply to comment
      • Report offensive content

   5. mwahahahha.....oh dear... Anonymous -- 08/04/06

      You're stopped taking your medication again, haven't you ?
      
      I really have gotten under your skin, and all you can do is stick your fingers in your ears while yelling "It's not happening...it's not happening!"..
      
      Mwhahahhaha...you're outclassed boy. Nice of you to mention you're seeing a shrink, that does not surprise me one little bit.
      
      Now, go back to playing games lad, your boss will haul you up in front of the afternoon shift again if she finds out you've been wasting time on the company Internet kiosk when you should have been changing the toilet rolls!
      
      Oh, one last thing... coffe boy, white with one..and make it snappy.

      • Reply to comment
      • Report offensive content

   6. tired and annoyed Anonymous -- 10/04/06

      you're both like a bunch of school girls! both of you get a life, and for the record i reakon that cpt m seems to understand security better than that bloody milk and two sugars git!! just goes to show what our hard earned tax payers money pays for :(
      
      i bet you both live in qld where the sun has baked your heads.

      • Reply to comment
      • Report offensive content

• Just In

• Most Popular

• Most Discussed

Reader Services

Popular Topics

Essentials