First published: 31 Oct 2024
Last updated: 31 Oct 2024

Content written for

Large organisations & infrastructure
Government

On 9 October 2024, the Australian Government introduced the Intelligence Services and Other Legislation Amendment (Cyber Security) Bill 2024 into Parliament. The Bill amends the Intelligence Services Act 2001 to legislate a Limited Use obligation for the Australian Signals Directorate (ASD).

The Bill is part of the Cyber Security Legislative Package. The legislative package was informed by an extensive consultation process, including the release of the Cyber Security Legislative Reforms Consultation Paper in December 2023 and targeted consultation on an Exposure Draft package in September 2024.

Through this consultation process, we heard feedback highlighting the need to ensure protection for information voluntarily shared with us about a cyber security incident.

Subject to the passage of the Bill through Parliament, the proposed Limited Use obligation intends to provide this protection. It’s designed to encourage sharing of cyber security incident information with ASD, and provide assurance that information will be protected. This will also bolster our ability to perform cyber security functions, including to:

  • mitigate harms in the early stages of cyber incidents through aggregating information derived from diverse sources;
  • provide advance warning of potential threats to Australia and Australia’s interests;
  • provide technical incident management advice and assistance to entities affected by a cyber security incident;
  • develop and maintain a comprehensive national cyber threat picture; and
  • provide advice on the uplift of cyber security.

Further information

More information on the Limited Use obligation for ASD will be available on cyber.gov.au and asd.gov.au, subject to the passage of the Bill through Parliament.

Was this information helpful?

Thanks for your feedback!

Optional

Tell us why this information was helpful and we’ll work on making more pages like it