❓ A WA parliamentary question reveals which departments and agencies within the Transport, Planning, and Lands portfolios have conducted penetration testing on their network systems and websites since March 2017, and which consultants were engaged.
AnsweredQoN 3802Legislative Assembly
QuestionView source ↗
For all departments, agencies, government trading enterprises or boards within the Minister’s portfolio responsibilities, I ask since 11 March 2017: (a) Have any independent consultants or companies been engaged to run penetration or 'White Hat' tests on any internal or external network systems: (i) If so, what consultant or company was engaged and on what date; (ii) If so, did it include any social engineering or phishing tests; and (iii) If not, why not; and (b) Have any independent consultants or companies been engaged to run penetration or 'White Hat' tests on any websites: (i) If so, what consultant or company was engaged and on what date; and (ii) If so, what website (domain only) was tested?
AnswerView source ↗
Answered
19 September 2018
Responded by
Minister for Transport; Planning; Lands
Response time
10 days
Former Department of Planning
(a)-(b) No
Former Department of Lands
(a)-(b) No
Department of Planning, Lands and Heritage
(a)-(b) No
Western Australian Planning Commission
(a)-(b) No
Department of Transport
(a) Yes - Ernst and Young, 2 February 2018
(b) Yes
(i) Ernst and Young, 2 February 2018
(ii) www.transport.wa.gov.au
Main Roads Western Australia
(a)-(b) No
Public Transport Authority
(a)-(b) The Public Transport Authority completed internal testing of its network systems in February 2017, and is currently implementing solutions based on its findings.
Mid West Ports Authority
(a) Yes - Hivint Cyber Security Consultants, June 2017
(b) No
Fremantle Ports Authority
(a) Yes - ES2, 22 September 2017
(b) Yes
(i) ES2, 22 September 2017
(ii) www.fremantleports.com.au
Kimberley Ports Authority
(a)-(b) KPA has not identified any potential threats that require ‘white hat’ or penetration testing on internal or external network systems
Pilbara Ports Authority
(a) Yes - ES2 Pty Ltd, 3 January 2018
(b) Yes
(i) ES2 Pty Ltd, 3 January 2018
(ii) www.pilbaraports.com.au and associated webpages
Southern Ports Authority
(a) Yes – Telstra, 15 March 2018
(b) No
Landcorp
(a) Last penetration test was completed in 2014. Vulnerability assessments are completed every two years
(b) Yes
(i) DiverseIT - From the 06/08/2018 to 10/08/2018.
(ii) https://stepstohome.com.au
Landgate
(a) Yes – Office of the Auditor General, 12 June 2018
(b) No
Metropolitan Redevelopment Authority
(a)-(b) No
(a)-(b) No
Former Department of Lands
(a)-(b) No
Department of Planning, Lands and Heritage
(a)-(b) No
Western Australian Planning Commission
(a)-(b) No
Department of Transport
(a) Yes - Ernst and Young, 2 February 2018
(b) Yes
(i) Ernst and Young, 2 February 2018
(ii) www.transport.wa.gov.au
Main Roads Western Australia
(a)-(b) No
Public Transport Authority
(a)-(b) The Public Transport Authority completed internal testing of its network systems in February 2017, and is currently implementing solutions based on its findings.
Mid West Ports Authority
(a) Yes - Hivint Cyber Security Consultants, June 2017
(b) No
Fremantle Ports Authority
(a) Yes - ES2, 22 September 2017
(b) Yes
(i) ES2, 22 September 2017
(ii) www.fremantleports.com.au
Kimberley Ports Authority
(a)-(b) KPA has not identified any potential threats that require ‘white hat’ or penetration testing on internal or external network systems
Pilbara Ports Authority
(a) Yes - ES2 Pty Ltd, 3 January 2018
(b) Yes
(i) ES2 Pty Ltd, 3 January 2018
(ii) www.pilbaraports.com.au and associated webpages
Southern Ports Authority
(a) Yes – Telstra, 15 March 2018
(b) No
Landcorp
(a) Last penetration test was completed in 2014. Vulnerability assessments are completed every two years
(b) Yes
(i) DiverseIT - From the 06/08/2018 to 10/08/2018.
(ii) https://stepstohome.com.au
Landgate
(a) Yes – Office of the Auditor General, 12 June 2018
(b) No
Metropolitan Redevelopment Authority
(a)-(b) No
Explore WA Government Data
Search the full archive in the free dashboard, or query programmatically via API.
Explore more
Government Gazette
Appointments, regulatory notices, planning changes.
Hansard
Debates, questions, speeches and sentiment.
Tabled Papers
Reports and documents tabled in Parliament.
Committees
Committee profiles and recent reports.
Regulations
Subsidiary legislation with filters and summaries.
Bills
Proposed laws and parliamentary progress.
Acts
Current WA legislation and summaries.
Explanatory Memoranda
Bills with EMs (text/PDF) available.
Members
MP profiles, party breakdown and rankings.
Pollie Rankings
Data-driven rankings across 19 categories.
Amendment Chains
Track how schemes and regulations evolve over time.