New cyber security tool for defence businesses
17 June 2022
South Australian businesses can now access a new cyber security tool to boost their cyber resilience and prepare them for work on Defence programs.
BAE Systems Australia and Saab Australia, in collaboration with industry partners and government have developed the Cyber Framework for the Defence Industry (CFDI) to measure and increase the cyber security of SMEs wanting to work in the sector.
Twelve prime contractors have already adopted the CFDI, which was developed to simplify and help address the growing cyber risk facing SMEs.
Defence companies require suppliers to have cyber security that reflects the products or services they provide and this can be a barrier to entry for many SMEs.
Raising the level of cyber security and cyber resilience of suppliers should have a flow on effect of increasing defence industry opportunities for SMEs developing or producing innovative technologies and services.
BAE Systems Australia Chief Information and Digital Officer, Michael Salas, said the company wanted more Australian SMEs to provide services and new technologies into defence programs because a more diverse supply chain enables greater levels of innovation.
“The Cyber Framework is a great start for SMEs wanting to self-assess their level of cyber risk,” he said.
“They can undertake a quick assessment of their cyber maturity which then leads to the identification of key areas in which to invest and improve a company’s defences. This leads to improving the cyber maturity of our defence supply chain and better outcomes for our customers.”
Saab Australia Managing Director, Andy Keough, said the new framework will reduce barriers to entry for SMEs into defence supply chains by providing a common cyber assessment tool.
“Currently SMEs face a different and complex security assessment process each time they work with a different defence prime,” he said.
“In developing this framework we have reduced red tape, making it easier for SMEs to secure opportunities in the defence sector.
“By the very nature of their size, many SMEs do not have the resources or expertise to upskill in information handling or cyber protection to meet defence requirements. This framework gives them a clear roadmap to gaining the required levels of cyber maturity.”
The CFDI provides a standardised approach to cyber maturity assessment and can also be used to guide users to next steps to increase their levels of cyber protection.
Image: Michael Salas (BAE Systems Australia), Audra McCarthy (Defence Teaming Centre) and Andy Keough (Saab Australia) via BAE Systems Australia.