Please enter your email address to receive a password reminder.
Log into Tax-News+
The Australian National Audit Office (ANAO) has said that the tax office must improve its cybersecurity arrangements.
The objective of the ANAO's cybersecurity audit was to assess whether the Australian Taxation Office (ATO), the Department of Human Services, and the Department of Immigration and Border Protection have implemented four key strategies to minimize risk: application whitelisting; application patching; operating system patching; and minimizing privileged user access.
The ANAO said that the ATO has security controls that provide a reasonable level of protection from breaches and unauthorized disclosures of information from internal sources. However, it also concluded that there is insufficient protection against cyber attacks from external sources. To achieve "cyber resilience" status, the ATO would need to improve its governance arrangements and prioritize cybersecurity, it said.
The ANAO recommended that the organizations concerned periodically assess their cybersecurity activities to provide assurance that they are accurately aligned with the outcomes of the Government's mitigation strategies, and their own IT security objectives. It added that the organizations should improve their governance arrangements by: making cybersecurity a priority; ensuring appropriate executive oversight of cybersecurity; implementing a collective approach to cybersecurity risk management; and conducting regular reviews and assessments of their governance arrangements.
The ATO agreed with both recommendations. It said: "We consider and manage risks associated with new technology to protect the integrity of the tax and superannuation systems and work across government to strengthen the security of digital services."
"The ATO has committed additional resource and focus to address deficiencies and reach a greater level of cyber resilience. Immediate improvements have already been put in place with a commitment to reach cyber resilience status in 2017," it added.
Through its electronic lodgment systems, the ATO collects over AUD440bn (USD334bn) in gross tax revenue annually.
IMPORTANT NOTICE: Wolters Kluwer TAA Limited has taken reasonable care in sourcing and presenting the information contained on this site, but accepts no responsibility for any financial or other loss or damage that may result from its use. In particular, users of the site are advised to take appropriate professional advice before committing themselves to involvement in offshore jurisdictions, offshore trusts or offshore investments.
All rights reserved. © 2017 Wolters Kluwer