Downer provides a full suite of professional and managed services to critical infrastructure and heavy industry organisations, government agencies and the Australian and New Zealand Defence and national security sector.
We are proud to provide a broad range of professional and managed services that focus on protecting Australia’s national interests.
Downer Defence and National Security plans, delivers and manages capability by providing a range of services, such as:
For more information on the services provided to Defence and National Security customers go to www.downergroup.com/defence.
Our Information and Communications Technology (ICT) services provide the foundation for businesses to achieve a competitive advantage by aligning ICT capabilities with strategic business goals.
We partner with customers, leveraging technology and know-how to plan, deliver and manage highly available, reliable, maintainable and secure ICT systems.
In doing so we have developed expertise with:
As part of Downer's delivery of urban services, providing reliable infrastructure and systems to Australian businesses and citizens, Downer’s Defence and National Security business is focused on improving the security posture of critical assets in an increasingly complex threat environment.
Our cyber security approach is aligned with the System Development Life Cycle (SDLC) ensuring planning, analysis, design, implementation and maintenance are considered. Our expertise comes from an intimate understanding of the cyber security domain and how we incorporate risk management.
At every step of the SDLC is the assessment of risk which considers likelihood, consequence and the effectiveness of controls to achieve a desired residual risk. This ensures the planning, requirements, designs, testing and operations are focused on priorities and there is an ongoing review of security controls against existing and future architectures and changes to the threat environment.
An overarching approach to building and maintaining secure capabilities is essential and includes:
Our architecture and design services ensure capability designs meet security objectives. This includes incorporating controls from security standards and developing security policies and procedures to ensure the operation is secure. Areas of focus include:
Our implementation and deployment services ensure the capability is built securely and is independently verified against the relevant standards. Key activities include:
Our operation and sustainment services ensure the system is secure throughout its day-to-day operations, with an ongoing focus to ensure that it remains that way. This includes ongoing assurance to validate that core security functions are maintained.
Crisis Management Capability (CMC) development ensures business resilience in the event of a crisis through a coordinated approach to achieve resolution. Effective CMC requires leadership, communications, policies, reporting and procedures for any foreseeable urgency.