- We have provided detailed recommendations to each agency in the audit. At a high level, we have recommended that they:
a. assess the risk posed by the malware threats we observed
b. improve any controls that we identified as ineffective
c. consider additional controls to better secure their networks, systems and data against malware.
2. We recommend that the WA public sector, by way of the Office of the Government Chief Information Officer:
a. continue the rollout and implementation of the Digital Security Policy, including its supporting guidelines and controls
b. consider methods to foster collaboration, information and resource sharing between agencies
c. gather information to properly understand the threat posed by malware and other cyberthreats to the WA public sector.