GIW Federal 2025: Andrew Philips on Navigating cybersecurity’s future: Advancing proactive security across Australian government agencies

Proactive, real-time risk visibility, not reactive patching, is now the backbone of modern cyber resilience across Australian government agencies.

Like Comment

Andrew Philp underscored the need for continuous, risk-based security—powered by automation, visibility, and AI—to protect citizen data and critical services.

“We’re a long way from just looking at CVEs—configuration, identity, cloud posture, and even MFA settings can be far more important than a single vulnerability.”

He outlined how Trend Micro’s Vision One, fully hosted in Australia and IRAP-assessed to Protected, consolidates data from Microsoft Defender, cloud environments, scanning tools, and more to generate a unified, real-time risk score across assets, identities, and devices.

“Once we collect the data, the real magic is making it functional—giving you a score for every asset, every identity, every device.”

This shift enables teams to move from reactive firefighting to proactive planning. Some agencies have utilized real-time scoring to boost team engagement, mitigate burnout, and gain immediate clarity on where to focus their efforts.

AI will take this further by translating cyber exposure into business impact.

“If we can express likelihood and impact in dollars, we can finally have a business conversation about cyber risk.”

Andrew closed with a case where a major healthcare department—struggling with legacy devices and Essential Eight compliance—used this approach to reduce compliance workload by 30% and proactively manage audits.

Core Insights

1. Rising Threat Pressure- Government agencies are facing an increased volume and sophistication of attacks—demanding proactive, continuous monitoring over point-in-time checks.

2. Smarter Risk Measurement- Agencies with structured, ongoing risk assessments show markedly higher resilience. Real-time scoring helps prioritise issues based on actual impact, not just vulnerability lists.

3. AI-Enhanced Defence- Aligned with ACSC guidance, AI helps detect threats faster, automate responses, and convert technical exposure into actionable business intelligence.

Key Takeaways

  • IRAP Protected, Australian-hosted Vision One, with sovereign air-gapped options

  • Integrated visibility across Microsoft Defender, cloud platforms, scanners and APIs

  • Real-time scoring across identities, devices and cloud assets

  • AI translating exposure into dollar-value impact models

  • The government healthcare agency achieved 30% compliance time savings

Most Popular Insights

Future-Ready Governance: Aligning Data, AI, and Modern IT for Impactful Public Service
Future-Ready Governance: Aligning Data, AI, and Modern IT for Impactful Public Service
ON DEMAND 12 Jan 2026
Future Trends in Digital Government
Future Trends in Digital Government
ON DEMAND 8 Jan 2026
Digital NSW 2025: Practical next steps to delivering on 2026 priorities with Laura Christie
Digital NSW 2025: Practical next steps to delivering on 2026 priorities with Laura Christie
ON DEMAND 11 Dec 2025
Digital NSW 2025: The Agentic Government: Re-Imagining an Inclusive Future for Public Service
Digital NSW 2025: The Agentic Government: Re-Imagining an Inclusive Future for Public Service
ON DEMAND 11 Dec 2025
Digital NSW 2025: John MacKenney & Charlie Sukkar on Readying for the AI era
Digital NSW 2025: John MacKenney & Charlie Sukkar on Readying for the AI era
ON DEMAND 10 Dec 2025
GIW FEDERAL 2025: Strategies to bolster female participation in the cyber workforce for optimised outcomes
GIW FEDERAL 2025: Strategies to bolster female participation in the cyber workforce for optimised outcomes
ON DEMAND 26 Nov 2025
Driving Innovation: Uruguay Path to Digital Transformation
Driving Innovation: Uruguay Path to Digital Transformation
ON DEMAND 19 Mar 2025
Revolutionizing Environmental Regulation in Alberta Through Technology
Revolutionizing Environmental Regulation in Alberta Through Technology
ON DEMAND 3 Jan 2025
Designing Services Around Citizen Needs: Achieving Seamless CX in the Digital Era
Designing Services Around Citizen Needs: Achieving Seamless CX in the Digital Era
ON DEMAND 20 Jun 2024
California’s Technology Strategy: What Is on the Horizon
California’s Technology Strategy: What Is on the Horizon
ON DEMAND 14 Apr 2024
Seamless Citizen Engagement: The Path to Simplicity
Seamless Citizen Engagement: The Path to Simplicity
ON DEMAND 20 Dec 2023
The Intersection of Technology, Security and Privacy at Service NSW
The Intersection of Technology, Security and Privacy at Service NSW
ON DEMAND 6 Dec 2023
Equity, Diversity, and Inclusion as Part of Organizational Transformation
Equity, Diversity, and Inclusion as Part of Organizational Transformation
ON DEMAND 11 Oct 2023
Generative AI, Trust & the Public Sector
Generative AI, Trust & the Public Sector
ON DEMAND 29 Aug 2023
On Demand - Public Sector Innovation Show - Alberta - Driving Forward 1GX in Alberta
On Demand - Public Sector Innovation Show - Alberta - Driving Forward 1GX in Alberta
ON DEMAND 10 Feb 2023

Most Popular Partner Content

Tips from Figma for making your site more accessible
Tips from Figma for making your site more accessible
INDUSTRY TRENDS 5 Dec 2025
Innovate Federal 2025 Key Takeaways: Data, Analytics and AI
Innovate Federal 2025 Key Takeaways: Data, Analytics and AI
INDUSTRY TRENDS 8 Dec 2025
2025 Ransomware Holiday Risk Report
2025 Ransomware Holiday Risk Report
INDUSTRY TRENDS 25 Nov 2025
EntraGoat is a deliberately vulnerable lab that simulates real-world identity misconfigurations in Microsoft Entra ID.
EntraGoat is a deliberately vulnerable lab that simulates real-world identity misconfigurations in Microsoft Entra ID.
GUIDES 6 Nov 2025
How Australia builds by design
How Australia builds by design
INDUSTRY TRENDS 20 Oct 2025
What’s Shaping Investigations and Integrity in Government (Australia, 2025)
What’s Shaping Investigations and Integrity in Government (Australia, 2025)
INDUSTRY TRENDS 26 Aug 2025
Private LLM Services for secure, compliant AI. Built for when Public AI won’t do.
Private LLM Services for secure, compliant AI. Built for when Public AI won’t do.
INDUSTRY TRENDS 1 Aug 2025
Are AI Apps safe to use? How to securely adopt AI in your agency.
Are AI Apps safe to use? How to securely adopt AI in your agency.
INDUSTRY TRENDS 15 Feb 2025
Unlock the Strategic Power of AI for Information Governance in 2025
Unlock the Strategic Power of AI for Information Governance in 2025
INDUSTRY TRENDS 2 Dec 2024
AWS vs Microsoft Azure vs Google Cloud vs Oracle Cloud Infrastructure: A Comprehensive Comparison
AWS vs Microsoft Azure vs Google Cloud vs Oracle Cloud Infrastructure: A Comprehensive Comparison
INDUSTRY TRENDS 12 Sep 2024
Using the Viable System Model to Improve Government Operations
Using the Viable System Model to Improve Government Operations
GUIDES 3 May 2024
Leveraging the Strength of Centaur Teams: Combining Human Intelligence with AI's Abilities
Leveraging the Strength of Centaur Teams: Combining Human Intelligence with AI's Abilities
INDUSTRY TRENDS 20 Oct 2024
Embracing Value Stream Thinking in Public Sector Project Management
Embracing Value Stream Thinking in Public Sector Project Management
GUIDES 21 Oct 2024
Everything You Need to Know About Oracle 23c
Everything You Need to Know About Oracle 23c
INDUSTRY TRENDS 24 Sep 2024
The Role of Database Management in Business Growth
The Role of Database Management in Business Growth
INDUSTRY TRENDS 16 Apr 2024