Skip to main content
The .gov.au means it’s official

Australian government websites always use a .gov.au domain. Before sharing sensitive information online, make sure you’re on a .gov.au site by inspecting your browser’s address (or 'location') bar.

This site is secure

The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Cyber Security Awareness Month

As part of the national Act Now. Stay Secure. campaign, Cyber Security Awareness Month 2025(Opens in a new tab/window) urges all of us to build a “cyber safe culture” by making everyday security practices habits. This includes strong passphrases, multi-factor authentication, keeping systems updated, and being aware of our cyber supply chain.

At GovCMS, we are excited to announce a recent enhancement, and to spotlight key areas we’re doubling down on, to ensure that risk is managed, exposure is reduced, and trust in digital government remains strong.

SBOM via Dependency Track
GovCMS has implemented a continuous Software Bill of Materials (SBOM) analysis tool, Dependency Track, within our platform. This gives us a clear inventory of software components (and their dependencies) used in our systems. We can now more easily identify, assess, and act on vulnerabilities in components, or when upstream issues arise.

This improvement means we can respond faster when vulnerabilities are found, stay aligned with compliance requirements, and continue to build trust with citizens, agencies, and suppliers who rely on GovCMS. 

Wondering how you can support stronger cyber security?
Here are practical steps (for internal tech teams, managers, and leadership) to align with these improvements:

  1. Review third-party components in your projects: Do we know which open source or vendor-provided libraries / services are being used? Are they maintained? Are they vulnerable?
  2. Choose secure-by-design vendors: When procuring, ask vendors how they manage security in development, how frequently they update dependencies, whether they provide SBOMs, etc.
  3. Stay up to date: Ensure software and components are regularly patched. Don’t allow dependencies to lag behind, especially those with known security issues.
  4. Implement multi-factor authentication (MFA) for privileged access to software systems.

If you have any further questions regarding Cyber Security Awareness Month, you can visit the official campaign website(Opens in a new tab/window) or Contact Us

Cyber Security Month

Make the move to GovCMS

Contact us
Return focus to the top of the page