The Active Cyber Defence Alliance Inc is a think tank whose aim is to foster awareness, adoption and capability in Active Cyber Defence practices across Australia with the goal of lifting Australia's cyber resilience. We draw together professionals from both the supply and demand side along with academic, legal and regulatory stakeholders who work together to support active cyber defence initiatives and to influence policy and practices for the benefit of our community.

Our definition of “Active Cyber Defence” (ACD) is:

a cyber defence approach that employs cyber intelligence, deception, active threat hunting and lawful countermeasures to expose, elicit and disrupt malicious actors before they impact data and operational capability.

The civilian cyber defence sector in Australia has traditionally focused on the static protection of information systems, while cyber offence—used to disrupt malicious actors—is the responsibility of national defence and law enforcement agencies. However, between these two domains lies a critical and underutilised space: the proactive monitoring and engagement of malicious actors by civilian organisations.

The Active Cyber Defence Alliance (ACDA) believes this middle ground presents a valuable opportunity for civilian entities to observe, interact with, and gather intelligence on cyber threats. Such actions could significantly strengthen defensive capabilities—provided there is a legal framework in place that protects these organisations from prosecution when acting in defence of information, privacy, and intellectual property.

Every foothold a malicious actor gains within an Australian organisation brings them closer to exfiltrating nationally sensitive data. Denying that foothold requires vision and responsiveness.

As the saying goes, a boxer who fights blindfolded is at a severe disadvantage—unable to see incoming strikes, they lose the ability to block, dodge, or counterattack. The ACDA is committed to exploring the lawful use of active defence techniques that remove the blindfold, illuminate the threats, and enable a timely, informed response.

Working Groups

The Active Cyber Defence Alliance (ACDA) operates working groups to address challenges to the adoption of active cyber defence. These groups are resourced by the efforts of members.

Cyber Law

Works to clarify lawful employment of cyber deception and other active techniques in defence of Australian national and civilian interests.

Proof of Concept (PoC)

Recruits public and private sector entities to undertake Active Cyber Defence POCs to create awareness and demonstrate the value/effectiveness of Active Cyber Defence.

Standards

Works to extend existing and emerging and security standards frameworks to incorporate appropriate active cyber defence measures. Supports other ACDA working groups with specialist advice.

Strategy

Responsible for the ACDA contribution to public policy. Responds to legislative reform initiatives and public inquiries relevant to cyber defence.  

Be part of it

Apply to Join