Fiji moves to formalize cyber threat sharing framework amid trust concerns
Despite agreements reached on sharing information about cyber risk and threat reports, mistrust persists between stakeholders and the Government. Fiji’s Policing Ministry cybersecurity manager, Savenaca Siwatibau, told attendees at the Pacific Fiber Conference and Training in Nadi that a key issue is whether the Government can guarantee that information won’t be shared with competitor organisations. The ministry’s framework, currently with the Solicitor-General’s office, aims to address these concerns and is designed to include a built-in communication plan and an incident response plan, with a particular focus on threat intelligence settings.
Siwatibau stressed the importance of sharing risk or threat reports with other stakeholders to strengthen the resilience of the country’s critical infrastructure. He noted that trust must be built within the sector to enable effective collaboration in cyber security. Even with the best technology, he said, forecasting threat vectors is essential to full protection, and timely, trusted, and coordinated communication will be the backbone of resilience for all sectors, not one standing alone in self-defense.
Most cyber attacks are routed through supply chains, he added. Therefore, a robust communication plan is needed to ensure timely sharing of information to safeguard critical infrastructure. With national security strategies launched, the ministry expects to have the framework ready for Cabinet approval by early next week. Siwatibau also observed that some organisations lacking formal cyber security policies have already developed their own policies, incident response plans, and communication strategies, and have shared these with the ministry. He expressed the hope that the standards of cyber security policies and strategies across organisations will be uplifted through the framework, and he indicated that the definition of critical infrastructure is being reviewed to better align with sector definitions.
Contextual background from related developments shows Fiji’s broader push toward stronger cyber readiness, including the establishment of a national CERT, ongoing international partnerships, and national cyber security policy development that aim to elevate the country’s resilience in the digital era.
Summary in Fijian
Summary in Fijian
E tukuna tiko na miniti ni polisia e Viti ni sa tiko na ivakarau ni veiliutaki ni nodra vakasamataki na veitawaki ni cyber risk kei na threats. E tukuna o Savenaca Siwatibau ni dodonu me kilai na ivakarau ni veika kece me vukea na veitokoni ena veiqaravi ni cybersecurity, kei na kena vakavinakataki na noda veimaliiwaki ena vanua ni itukutuki levu. E vertaka me vakatovolei na ivakarau ni veimatanitu me baleta na threats, vakavinakataki na veitarogi ni threats, kei na vukea na veika vakailoilo me vakadeitaka na tukutuku ni threat me baleta na ibalebale ni critical infrastructure. E tukuna tale ga ni na vakatulewataki ki Kabineti ena vula oqo na ivakarau, ka tiko talega na vakatulewa me baleta na missional CERT kei na veivakadonui kei Australia me warmea na kena vakabula. E vakaraitaka sara talega na veika e baleta na policies ni cyber security vei ira naилири kei ira na utila ni itukutuki, ka vakaitikotiko tiko na kena ivakarau me lawa na veika kece e taleitaka na vanua.
Additional comments and value
– The push for a formal threat-sharing framework aligns with Fiji’s ongoing national cybersecurity agenda, including plans around the CERT, cybercrime legislation, and international partnerships. This could improve incident response times and enable more proactive defense across sectors.
– Trust-building measures are essential for cross-sector collaboration, especially given that supply-chain risk is a major vector for cyber attacks. Clear governance on data handling and non-disclosure will be critical for successful information sharing.
– The framework’s success will partly depend on Cabinet approval and subsequent implementation across all relevant agencies, as well as ongoing engagement with private sector stakeholders who manage critical infrastructure.
– International collaboration (e.g., with Australia and other partners) and alignment with global standards can help Fiji elevate its cyber resilience and potentially serve as a regional model.
Outlook
If implemented effectively, the framework could foster stronger trust and more timely, coordinated cyber threat intelligence sharing across Fiji’s critical infrastructure, reducing vulnerability to supply-chain and other sophisticated cyber threats. The emphasis on proactive communication and alignment with national security goals suggests a positive trajectory for Fiji’s cyber readiness and regional leadership in the Pacific.
Negative sentiment check
None
End remarks
– This development should be monitored for updates on cabinet approval and concrete timelines for rollout, as well as any shifts in policy that impact private sector participation and data-sharing agreements.
Note for editors
– Consider highlighting how the framework will interact with existing or planned components such as CERT, incident response protocols, and cross-border cybercrime agreements to provide readers with a clear view of the overall national strategy.
Leave a comment