Significant governance, capability and funding gaps common to most Australian state and territory governments include:
1. Business continuity planning: Business continuity plans and disaster recovery plans do not reflect the current, rapidly changing threat environment.
2. Skills shortage: Organisations struggle to attract and maintain enough employees with security skills to match their needs.
3. Executive buy-in: Cyber security issues are under-emphasised in resilience planning and receive limited board-level support.