Cyber Incident Management Plan
The Victorian Government has released its Cyber Incident Management Plan. Will your Council’s IT policies need to be updated to align with the Plan?
Last month the Victorian Government released its Cyber Incident Management Plan.
The Plan applies to all Victorian Public Sector bodies, and details the responsibilities of Victorian Government organisations in managing cyber incidents.
While not mandatory for local government, councils are encouraged to adopt the Plan.
Broadly, the Plan contains requirements about the following cyber incident issues:
- Cyber incident preparation
- Threat detection and analysis
- Cyber incident notifications
- Additional Notifications

"Will your Council’s IT policies need to be updated to align with the Plan?"
Mark Hayes, Partner
The Plan does not replace an organisation’s existing information security plans, policies and procedures. Rather, the existing documents should be updated to align with the Plan.
As councils continue to adopt cloud computing their exposure to cyber incidents will increase. Alignment of council policies with the Plan should better prepare councils in responding and managing cyber incidents and assist councils in creating a trusted and secure cyber environment.
Will your Council’s IT policies need to be updated to align with the Plan?
Recent articles

PFAS: What Victorian councils need to know
A summary of what Victorian councils need to know about PFAS.

Further reform to Victoria’s planning system proposed
Additional changes form part of the Consumer and Planning Legislation Amendment (Housing Statement Reform) Bill 2004.

What Victorian Government personnel need to know about ensuring privacy compliance with ChatGPT usage
Findings on practical uses of Generative AI (GenAI) in the Victorian Public Service.

FOGO is GO GO in NSW
The NSW Government has legislated local councils collect and transport food and garden organics waste from 1 July 2030.
Partner
Melbourne