- Posted December 20, 2024
- Media Releases
The GCSB’s National Cyber Security Centre (NCSC) has implemented all improvements identified by the review of malicious cyber activity targeting members of the Inter-Parliamentary Alliance on China (IPAC).
Lisa Fong, Deputy Director-General Cyber Security, GCSB, says that following the review in July this year, the NCSC moved quickly to action the recommendations and improvements.
“I’m pleased to confirm that we have put in place measures to address all recommendations outlined in the initial review,” says Ms Fong.
This included updating the NCSC’s internal processes, in consultation with relevant stakeholders.
New guidance and standards have been established for NCSC staff to help ensure concern of this nature is not repeated in future.
We have also published advice and guidance for New Zealanders considered ‘high profile individuals’ on the NCSC website, in accordance with recommendation four of the review.
“These series of actions help to ensure the NCSC’s work continues to be both focused on the most significant threats, but also those whom those threats affect.”
Ms Fong says that although this marks the completion of improvements identified this response; the NCSC remains open to continuous improvement as the lead cyber security agency for New Zealand.
“This implementation of specific recommendations is not the end of the NCSC’s ongoing work to ensure its response to cyber incidents reduces harm for New Zealanders.
“We are committed to identifying opportunities for improvement in our practices and procedures and implementing these where we have the ability to do so,” says Lisa Fong.
ENDS
Background:
A review of the GCSB’s National Cyber Security Centre’s (NCSC’s) practices and procedures arising out of reported malicious cyber activity targeting members of the Inter-Parliamentary Alliance on China (IPAC) found the NCSC needs to give more consideration to the wider implications of cyber security incidents, beyond the technical response.
The internal review was initiated in May this year by Lisa Fong to identify areas for improvement following concern at the NCSC’s handling of reports of malicious cyber activity targeting IPAC members.
The review concluded in July and examined the NCSC's procedures and practices when it receives reports of malicious cyber activity involving foreign state-sponsored actors targeting identified New Zealand individuals.
See www.ownyouronline.govt.nz(external link) for advice, guides and information about cyber security threats facing everyday New Zealanders and businesses.
Media contact: media@ncsc.govt.nz