WP_User Object ( [data] => stdClass Object ( ) [ID] => 0 [caps] => Array ( ) [cap_key] => [roles] => Array ( ) [allcaps] => Array ( ) [filter] => [site_id:WP_User:private] => 0 ) MeprUser Object ( [rec:protected] => stdClass Object ( [ID] => [first_name] => [last_name] => [user_login] => [user_nicename] => [user_email] => [user_url] => [user_message] => [user_registered] => [user_activation_key] => [user_status] => [signup_notice_sent] => [display_name] => ) [attrs:protected] => Array ( ) [defaults:protected] => )
Back
Security Best Practices The Security Divide: Why Australia’s Security Leaders Are Fighting Yesterday’s War by Pooja Singh 18 mins

Executive summary 

Australia’s Chief Information Security Officers are presiding over a dangerous illusion. Boardrooms applaud compliance dashboards and earmark budgets for AI pilots, yet the foundational controls that determine resilience remain incomplete. Multi-factor authentication—among the most basic safeguards—is still not universal. Patching cycles, which should be embedded as routine, continue to drag out over months. And across critical infrastructure, Essential Eight maturity lingers at levels that would have been considered insufficient a decade ago.

This isn’t hyperbole. It’s a stark reality revealed by ADAPT’s Security Edge Survey of more than 120 CISOs—executives responsible for protecting assets worth trillions of dollars and infrastructure serving 26 million Australians. Security incidents are climbing 30-40% year-over-year, even as the average security budget reaches $75 million.

However, that figure masks a telling disparity. While the average budget is $75 million, the median is just $10 million—exposing a two-tier system where a small number of organisations operate with very large budgets, while the majority manage with considerably less.

Before we examine the data, we anchor this report in three practitioner perspectives that span national security, regulated finance, and large-scale enterprise change. William MacMillan—former CIA CISO and now Chief Product Officer at Andesite—brings a hard-edged view of baseline controls and regulatory momentum. David Gee, who built programs across NAB and Macquarie and advises Australia’s critical infrastructure sectors, exposes the execution and resourcing realities behind most board dashboards. Archie Reed, a veteran security executive and advisor, focuses on the cultural and communication shift required for CISOs to turn technical work into enterprise risk outcomes.

Want to download the full guide? Fill in your details to request access to the full report and we’ll be in touch soon.​
Request to Download
Talk to Sales
Already an ADAPT Research & Advisory client?

Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Phasellus hendrerit. Pellentesque aliquet nibh nec urna. In nisi neque, aliquet vel, dapibus id, mattis vel, nisi. Sed pretium, ligula sollicitudin laoreet viverra, tortor libero sodales leo, eget blandit nunc tortor eu nibh. Nullam mollis. Ut justo. Suspendisse potenti. Sed egestas, ante et vulputate volutpat, eros pede semper est, vitae luctus metus libero eu augue. Morbi purus libero, faucibus adipiscing, commodo quis, gravida id, est. Sed lectus. Praesent elementum hendrerit tortor. Sed semper lorem at felis. Vestibulum volutpat, lacus a ultrices sagittis, mi neque euismod dui, eu pulvinar nunc sapien ornare nisl. Phasellus pede arcu, dapibus eu, fermentum et, dapibus sed, urna.

Morbi interdum mollis sapien. Sed ac risus. Phasellus lacinia, magna a ullamcorper laoreet, lectus arcu pulvinar risus, vitae facilisis libero dolor a purus. Sed vel lacus. Mauris nibh felis, adipiscing varius, adipiscing in, lacinia vel, tellus. Suspendisse ac urna. Etiam pellentesque mauris ut lectus. Nunc tellus ante, mattis eget, gravida vitae, ultricies ac, leo. Integer leo pede, ornare a, lacinia eu, vulputate vel, nisl.

  • Praesent dapibus, neque id cursus faucibus, tortor neque egestas augue, eu vulputate magna eros eu erat. Aliquam erat volutpat. Nam dui mi, tincidunt quis, accumsan porttitor, facilisis luctus, metus.
  • Lorem ipsum dolor sit amet, consectetuer adipiscing elit. Donec odio. Quisque volutpat mattis eros. Nullam malesuada erat ut turpis. Suspendisse urna nibh, viverra non, semper suscipit, posuere a, pede.

Morbi interdum mollis sapien. Sed ac risus. Phasellus lacinia, magna a ullamcorper laoreet, lectus arcu pulvinar risus, vitae facilisis libero dolor a purus. Sed vel lacus. Mauris nibh felis, adipiscing varius, adipiscing in, lacinia vel, tellus. Suspendisse ac urna. Etiam pellentesque mauris ut lectus. Nunc tellus ante, mattis eget, gravida vitae, ultricies ac, leo. Integer leo pede, ornare a, lacinia eu, vulputate vel, nisl.

Want access to the full suite of local research, benchmarking data, interviews and more?

 Book a Discovery Call
Explore Services
Already an ADAPT Research & Advisory client?

You may also like

Security Best Practices ADAPT’s 2024 Data Edge Insights – Enabling Australian Data and Analytics Leaders in Rapidly Evolving AI Landscape
Security Best Practices How to harden your defences when simplifying compliance
Data & AI Best Practices How to uplift the data foundations when simplifying compliance
ADAPT