Departments and agencies in New South Wales (NSW) are to develop standard cyber security procurement contract terms as part of the state’s first cyber security strategy.
The inclusion of the contracting provision was a direct response to an NSW auditor-general review that found most IT service providers working for agencies were not contractually obliged to report cyber security incidents.