Description of Figure 11

The image is structured into four color-coded sections, each with a heading and a list of policy-related bullet points:

Procurement and contracts (top left section)

  • Commonwealth Procurement Rules
  • Commonwealth Australian Industry Participation Plan Policy
  • Australian Skills Guarantee Procurement Connected Policy
  • Environmentally Sustainable Procurement Policy
  • Indigenous Procurement Policy
  • Workplace Gender Equality Procurement Principles
  • Shadow Economy – increasing the integrity of government procurement
  • Contracts Limits and Reviews Policy
  • Resource Management Guides

Cyber and security (top right section)

  • Protective Security Policy Framework
  • Information Security Manual
  • Secure Cloud Strategy
  • Hosting Certification Framework
  • 2023–2030 Australian Cyber Security Strategy
  • The Privacy Act 1988
  • Security of Critical Infrastructure Act 2018
  • Cyber Security Act 2024

Digital and investment (bottom left section)

  • Data and Digital Government Strategy
  • Digital and ICT Reuse Policy
  • Digital Service Standards
  • Using AI in the Australian Government
  • Digital and ICT Investment Oversight Framework
  • Benefits Management Policy
  • List of Critical Technologies in the National Interest
  • Data, digital, and cyber workforce plan

Broader ecosystem (bottom right section)

  • Buy Australia Plan
  • APS Net Zero Emissions by 2030
  • APS Reform Agenda
  • Competition and Consumer Act 2010
  • Corporations Act 2001
Off

In particular, the review identified the following improvement opportunities:

  • Further value can be obtained in existing policies by negotiating adoption expectations in the head agreement, rather than devolving this responsibility to the buyer’s contract (e.g. CAIP Plans).
  • Consider how to mitigate unintended market consequences in the existing Contract Limits and Review Policy to address unintended market outcomes.
  • Define data and digital sovereignty with consideration of localisation requirements, and assess the technology landscape to identify technology necessitating stronger cyber and security requirements.
  • Distinguish more clearly whole of Australian Government digital contracts from Coordinated Procurements within the Commonwealth Procurement Rules (CPRs).
Follow guidance on critical and emerging technologies

 

Stay current: Technology can advance at a staggering pace. If available, refer to government guidance on risks, opportunities and developments for up-to-date advice on critical or emerging technology that may impact your service.  

Regularly check the Australian Government Architecture: Follow published guidance in the Australian Government Architecture for the adoption of critical and emerging technologies.

Off

Chapter 2

Chapter 2

Digital and Investment

Data and Digital Government Strategy

2.46 The SSAs align well with the Data and Digital Government Strategy, which sets a clear expectation that the Australian Public Service (APS) will strengthen partnerships:

The Government spends on average around $70 billion each year on procurement activities, helping to drive economic, social and sustainability outcomes for Australia. This includes procuring a significant range of data and digital products, services and support from industry – everything from software and hardware, corporate systems, analytics tools and cloud services. This represents an opportunity to partner with industry, through the Commonwealth Procurement Framework, to identify the best solutions to deliver government services. The Framework also helps Government to take advantage of industry innovations, and seek industry’s support to solve emerging problems, through mechanisms like requests for information.

 2.47 Notwithstanding the Strategy’s concurrent expectation to reduce the reliance of the Australian Government on those external to the APS as “in 2021, almost half of its digital and ICT workforce were contractors, service providers and consultants”, there is a clear recognition that partnering with industry is key to identifying the best solution to deliver government services.

List of Critical Technologies in the National Interest

2.48 The SSA sellers products align well with several of the technologies listed by the Department of Industry, Science and Resources on the ‘List of Critical Technologies in the National Interest’, including:

  • Advanced manufacturing and materials technologies, such as IBM Maximo enables predictive maintenance, smart factory operations, and asset optimisation.
  • AI technologies, such as SAP Business AI, Microsoft Copilot, and Amazon Q and Oracle Generative AI/machine learning, IBM Watson.
  • Advanced information and communication technologies, such as Microsoft Teams, Amazon EMR (Elastic MapReduce), Oracle’s Distributed Cloud Solutions and Roving Edge, and IBM Voice Gateway and Hybrid Cloud with Red Hat OpenShift.
  • Quantum technologies, such as Microsoft’s Majorana 1 chip, IBM's Quantum System Two and Amazon Braket.
  • Biotechnologies, such as IBM research which contributes to computational biology through AI-driven drug discovery and bioinformatics platforms.
  • Clean energy generation and storage technologies, such as IBM Maximo which supports energy efficiency, emissions tracking, and intelligent asset management for renewable energy systems.

Digital and ICT Reuse Policy

2.49 The consolidated contracting of the SSAs is in clear alignment with the intent of the Digital and ICT Reuse Policy to “Reuse wherever possible” and “Enable reuse by others”. Further the Reuse Standard published on the Australian Government Architecture, also notes the desire for reuse:

In the Australian Government context, the term 'reuse' means using an existing component within the process of realising a new digital or ICT solution, as grouped into the following categories:

  • Procurement

    • Commercial, legal, and licensing agreements

    • Whole of Government procurement resources

    • Procurement processes

2.50 SSAs, however, require the relevant buyer and the seller to agree on the application of any intellectual property rights, transfer rights and pricing metrics. 

Digital Service Standard

2.51 The SSAs broadly align with the Digital Service Standard in the following areas:

  • Connect services: the policy expectation is to 'design for interoperability' and 'join up services'. This is easier to achieve in a stable technology environment, as dynamic technology environments require reintegration or rearchitecting for interoperability. Nonetheless, the SSAs encourage contracts to address interoperability and integration requirements, although these requirements may change over the products lifecycle.
  • Don't reinvent the wheel: applying lessons from predecessors is easier to do with comparable technology platforms / products. The SSAs deal with technology change and evolution.
  • Innovate with purpose: SSAs ease the uptake of innovations and emerging technologies as they become available through the established contractual mechanisms. The SSAs facilitate access to product and service improvements.

2.52 No other key points of note were identified for:

  • Using AI in the Australian Government.
  • Digital and ICT Investment Oversight Framework.
  • Benefits Management Policy (except as per the Improving reporting and transparency section in this report).
  • Data, digital and cyber workforce plan.

Chapter 2

Cyber and security

2.53 A range of cyber security and related legislation, policies and frameworks are applicable to the SSA ecosystem, and government procurement and contracting more generally. As the technology and cyber security sector continues to rapidly evolve and responds to new and emerging threats and vulnerabilities, the Australian Government and sellers must continually adapt.

2.54 The SSAs generally support these legislative and policy settings by facilitating buyers’ alignment with the requirements through head agreements and underlying contracts, and through enabling government agencies to meet the requirements, for example through providing products that are or can be assessed against the Information Security Manual (ISM) requirements.

2.55 However, the SSAs generally contain lower levels of base protections specific to cloud services contracts. The SSAs offer opportunities to include improved protections in contracts, but these need to be negotiated with the sellers. Therefore, when considering the cyber and security legislative and policy ecosystem, there remains opportunities for the government to introduce greater consistency in representing cyber and security requirements. The SSA terms and conditions related to cyber and security are represented in various forms and structures throughout the SSA head agreements, with varying levels of detail and various references to specific legislation and policy.

Protective Security Policy Framework (PSPF) and Information Security Manual (ISM)

2.56 Central to the Australian Government cyber security policy landscape is the PSPF which, across six security domains, prescribes what applicable government entities must do to protect their people, information and resources, both domestically and internationally. The relevance to SSAs is evident through this PSPF statement:

"Non-government organisations and third-party service providers may be required to implement aspects or parts of the PSPF. This will be detailed in relevant deeds or agreements between the Australian Government and the non-government organisations or third-party service providers."

2.57 SSA head agreements contain provisions related to compliance with the PSPF and ISM requirements. In some cases, the responsibility for including these provisions in contracts between government agencies and SSA sellers is devolved to the buyer. The is represented in various ways, for example:

  • Compliance with the requirements of the PSPF, ISM and Privacy Act (either in accordance with the head agreement, or as specified in a contract with a government entity).
  • Compliance with other specified security requirements.
  • Developing a Commonwealth Data Protection Plan for Customer Data, which must be consistent with the requirements of the Privacy Act 1998, PSPF and ISM requirements.

2.58 While devolving responsibility is considered appropriate, as it allows agencies to consider their risk context in negotiating these terms, this introduces challenges relating to:

  • Consistency in the application of the minimum PSPF and ISM requirements and standardisation of the terms and conditions.
  • Ensuring the contract adequately covers security requirements specific to an agency.
  • Maintaining relevant expertise within procurement and contract management teams to ensure the provisions are appropriate in the context of the agency.

2.59 The SSAs also generally reference seller or other security standards. While alternative or additional standards may be appropriate, agencies must have the capability to assess these alternative standards and be aware of their obligations to report compliance with these standards in their protective security reporting. This approach risks introducing inconsistencies in the application of Australian Government cyber security standards.

2.60 While the SSAs contain general provisions relating to cyber security, stakeholders identified the need to establish a minimum or standardised set of cyber and security clauses for inclusion in SSAs that cannot be overridden. Consultation with the Department of Home Affairs (Home Affairs) and ASD will be essential to identify and define these requirements. 

2.61 Further, stakeholders identified the need to define digital and data sovereignty and localisation requirements as they relate to critical products and capabilities in the technology sector. Once agreed, there is an opportunity for the Australian Government to undertake analysis of the types of capabilities and data that warrant being subject to sovereignty requirements.

2.62 To achieve the above, Home Affairs, ASD and the DTA together should:

  • Establish the minimum set of cyber and security clauses within SSAs which cannot be overridden by seller terms when a buyer enters a contract.
  • Define data and digital sovereignty, with consideration of localisation requirements and existing policy (e.g. the Hosting Certification Framework).
  • Undertake an assessment of the existing Australian Government technology landscape (the Digital Investment Plans could be used to support this activity) to identify the specific technology and capability that should be subject to data and digital sovereignty requirements.
  • Determine the appropriate mechanism to enforce the requirements (e.g. Protective Security Policy Framework directives).

2.63 The approach to implementing additional provisions in SSAs will require consideration due to the additional requirements this will place on both buyers and sellers. For example, to reduce the burden, the following could be considered:

  • Head agreements with SSA sellers could include specific provisions for digital and data sovereignty related to the capabilities they provide, enabling the buyer to include any additional requirements in their contracts by exception.
  • PSPF Directives could require Accountable Authorities to implement measures to achieve compliance with digital and data sovereignty, placing the onus on buyers to negotiate and manage these requirements with SSA sellers.

Secure Cloud

2.64 Section 15 of the PSPF includes direction on cyber security programs, including:

  • The Secure Cloud Strategy that emphasises the advantages to be gained from moving from on-premises, owned and operated infrastructure to cloud computing, while recognising the challenges in adoption including lack of knowledge, outdated operating models, and difficulties in gaining business support for the transition.
  • To assist with adopting secure cloud (as described by the Secure Cloud Strategy), agencies are required to use Cloud Service Providers that have completed an Infosec Registered Assessors Program (IRAP) assessment for their cloud services. The sellers with an SSA offering cloud-based services support this requirement with a range of cloud-based services having undergone IRAP assessment that can be consumed by government entities.
  • Due to the evolving nature of the products and services offered under the SSA arrangements, it is imperative that agencies maintain awareness of which specific products and services are IRAP assessed when establishing arrangements with the SSA sellers and ensuring that emerging products are assessed on an as required basis.
  • The Hosting Certification Framework (HCF) assists the Australian Government agencies to identify and source hosting services aligned to their risk profile, classification and sensitivity of their data, and internal risk assessment. The HCF applies to Data Centre Providers and Cloud Service Providers, and enables certification at three levels: In collaboration with the SSA sellers, the DTA could maintain a centralised list for reference by buyers.
    • Strategic: represents the highest level of assurance and is only available to Service Providers that allow government to specify ownership and control conditions. A Certified Strategic Service Provider offers additional protections to government compared with a Certified Assured Service Provider. These include increased security controls. Due to these additional protections, government customers with a high-risk profile or those seeking additional protections for their data may require the services of a Certified Strategic Service Provider.
    • Assured: provides safeguards against change of ownership or control through financial penalties that are aimed at minimising the transition costs borne by the Commonwealth if a Service Provider alters their profile. Government customers with a low-risk profile and sensitive data, which has been deemed by the government customer to not need additional security protections, may seek the services of a Certified Assured Service Provider.
    • Uncertified: offers minimal protections to government. Government customers may use the services of an Uncertified Service Provider to host non-sensitive data or where their internal risk assessment determines it appropriate to do so.
  • The SSAs support the intent of the HCF through various means:
    • Several SSA sellers provide certified cloud services, including Certified Strategic.
    • SSA sellers provide solutions that leverage certified cloud services.
    • SSA sellers provide solutions that do not require the use of certified cloud services, for example, a SaaS product hosted in a non-certified data centre where the use case involves non-sensitive data and acceptance through a risk assessment.

2.65 For both IRAP assessed and HCF certified cloud services, government entities must maintain awareness and visibility of the scope and currency of the assessments. This is particularly important as only a subset of the offerings (within the broad ecosystem of products and solutions) from the SSA sellers (and sellers more generally) are IRAP assessed or HCF certified.

Cyber Security Act 2024 (Cyber Security Act)

2.66 The Cyber Security Act includes measures to: 

  • Mandate minimum cyber security standards for smart devices.
  • Introduce a mandatory ransomware and cyber extortion reporting obligation for certain businesses to report ransom payments.
  • Introduce a Limited Use obligation for the National Cyber Security Coordinator to encourage industry engagement with the government following cyber incidents.
  • Establish a Cyber Incident Review Board to conduct reviews of significant cyber incidents and share lessons learned.

2.67 Legislation, in the form of Rules, supports the measures under the Cyber Security Act. The initial rules took effect on 30 May 2025 (Ransomware Payment Reporting Rules and the Cyber Incident Review Board Rules) and further rules will come into effect 4 March 2026 (Security Standards for Smart Devices Rules).

2.68 The Cyber Security Act and Rules are applicable to the SSA sellers where they meet the definition of a ‘reporting business entity’. The review identified that the head agreements do not reference the Cyber Security Act, largely attributable to the Act coming into effect in late 2024.

Security of Critical Infrastructure Act 2018 (SOCI Act)

2.69 The SOCI Act establishes the legal obligations for entities that own, operate, or have direct interests in critical infrastructure assets. The 2023 Critical Infrastructure Resilience Strategy defines critical infrastructure as:

those physical facilities, supply chains, information technologies and communication networks, which if destroyed, degraded or rendered unavailable for an extended period, would significantly impact the social or economic wellbeing of the nation, or affect Australia’s ability to conduct national defence and ensure national security.

2.70 The SOCI Act defines each class of critical infrastructure asset and applies to SSA sellers where they meet the definition of a “responsible entity” in the SOCI Act.

2.71 The review notes that while the above arrangements are positive, the head agreements with the SSA sellers inconsistently reference or include provisions specific to the SOCI Act. For example, head agreements contain:

  • Consultation provisions relevant to the SOCI Act.
  • Clauses specific to incident reporting.
  • In some cases, no specific reference to the SOCI Act.

2023-2030 Australian Cyber Security Strategy (ACS Strategy)

2.72 The ACS Strategy outlines a range of initiatives aligned to six ‘cyber shields’ that will help Australia become a world leader in cyber security by 2030, with the intention of working with industry to reinforce the shields and build cyber resilience. It can be reasonably expected that emerging regulation, policies, frameworks and amendments will need to be reflected in any current and future SSAs. 

Privacy Act 1988 (Privacy Act)

2.73 Head agreements for the SSAs contain specific provisions related to the Privacy Act, requiring SSA sellers to ensure compliance. 
 

Chapter 2

Overall alignment

2.82 The single seller arrangements (SSAs) meet most of the policies applicable (to the extent that SSA policy provisions automatically apply to all contracts placed under head agreements, or to the extent that buyers can negotiate the options included in SSAs relating to policy provisions into their contracts), however, gaps exist in the inclusion of some policies in all of the SSAs (e.g. Supplier Code of Conduct is not included in all SSAs) and the policies' implementation effectiveness (e.g. CAIP Plans and Skills Guarantees targets are not actively in place).

2.83 This necessitates improvement in some areas identified:

  • As the policy and technology environment changes over time, the SSAs can become out of step, resulting in gaps in meeting the current policy environment that will need resolution. In particular, this relates to the value of many of the contracts established under the SSAs substantially exceeding the thresholds for CAIP Plans and the Skills Guarantee. Compliance with these policies has been deferred to buyers when establishing contracts under the head agreement, and the review anecdotally confirmed that buyers have not implemented these policy requirements.
  • The automatic exemptions under the DTA Contract Limits and Reviews Policy create an advantage for some SSA sellers, as the SSAs sellers can provide pricing reflective of a larger contract value (i.e. greater than $100m) and over a longer period of time (i.e. more than 3 years) than would otherwise be allowed. Some SSA sellers also shared their preference for longer arrangements, indicating this would enable them to provide improved pricing through greater discounts.
  • While the agreements contain provisions allowing inclusion of legislation and policy as they evolve, consideration is required of the minimum cyber and security requirements applicable to the products and services provided by SSA sellers (and which cannot be excluded in contracts). Consultation will be required with Home Affairs and ASD to identify and define these requirements where warranted.
  • Stakeholders identified the need to define digital and data sovereignty (refer to further discussion of sovereign capability presented in “Inquiry into supporting the development of sovereign capability in the Australian tech sector”) and localisation requirements as they relate to the products, services and solutions in the technology sector. Until there is common agreement and understanding of these concepts, the Commonwealth’s ability to undertake an analysis of the types of data, information, products and services requiring stronger cyber and security (and other) provisions is diminished. 

2.84 Further, ongoing monitoring by the DTA is required of the upcoming changes, including:

  • The new sustainability reporting requirements introduced under Chapter 2M of the Corporations Act 2001 for financial years beginning on or after 1 January 2025.
  • The Environmentally Sustainable Procurement Policy which came into force from 1 July 2025 for ICT goods, requiring establishment of new Supplier Environmental Sustainability Plan. This is particularly relevant for physical IT products (e.g. hardware).
  • The implementation of the Secure Australia Jobs Code as indicated by the Buy Australian Plan.
  • The outcome of the DTA's consultations on the Procurement and Sourcing Policy and related standards.

Chapter 2

Broader ecosystem

2.74 Among other priorities, the Buy Australian Plan sets out an intention to leverage Commonwealth procurement, such as the single seller arrangements (SSAs), to: 

Table 5 Key strategies of the Buy Australian Plan relevant to SSAs

Key provision

Discussion

Open the door to more government work for more small and medium businesses by decoding and simplifying procurement processes

Finance have established initiatives outlined in the Buy Australian Plan to support decoding and simplifying procurement processes. Establishing CAIP Plans will support this initiative.

Establish a Secure Australian Jobs Code to prioritise secure work in government contracts and ensure that government purchasing power is being used to support businesses that engage in fair, equitable, ethical and sustainable practices

This Code is not yet in force, however, will need to be considered in the future when implemented.

Provide more opportunities for First Nations businesses with a view to maximise skills transfer so that we can get more First Nations workers into long-term skilled work

The SSAs include Indigenous Procurement Policy provisions that align with achieving this policy intent. 

Use government spending power to take action on climate change and support energy projects

No inconsistencies were identified with Australia’s long-term emissions reduction plan as required under Net Zero Emissions by 2030.

2.75 Further to the requirements associated with encouraging competition under the CPRs, the Competition and Consumer Act 2010 (Volume 1, Part IV – Restrictive trade practices, Division 2 – Other Provisions) makes provisions for four key aspects relevant to the SSAs:

Table 6 Key provisions of the Competition and Consumer Act 2010

Key provision

Relevance to the SSAs

Contracts, arrangements or understandings that restrict dealings or affect competition (section 45)

Sellers must not enter contracts, arrangements or understandings which substantially lessen competition.

Prohibition of contracts, arrangements or understandings affecting the supply or acquisition of goods or services (section 45E)

Sellers must not prevent or hinder the supply or acquisition of goods or services it has agreed to provide.

Misuse of market power (section 46)

Sellers with substantial market power must not engage in conduct that substantially lessens competition in the marketplace

Exclusive Dealing (section 47)

Sellers must not enter arrangements to the exclusion of all others. (Section 45(5A) enables the entering of contracts to the exclusion of all others, such as the SSAs.)

2.76 Further to the above, established international trade agreements shape procurement obligations, promoting transparency, non-discrimination and open competition in government procurement. 

2.77 Whilst most of the SSA sellers are leaders in their respective markets globally and compliance with the Competition and Consumer Act 2010 is a matter for the Australian Competition and Consumer Commission (ACCC) as the regulator, no evidence of breaches relevant specifically to the SSAs of the above provisions were submitted to the review. The review acknowledges the recent report by the ACCC entitled ‘Digital platform services inquiry’.

2.78 Further engagement with the Department of the Treasury (Treasury), who oversee the application of the Competition and Consumer Act 2010, indicated there are no concerns with the establishment or use of the SSAs. Ongoing monitoring by the DTA of the work being undertaken by Treasury regarding the ‘Digital platforms – a proposed new digital competition regime’ is required as this may introduce new obligations regarding the competitive landscape relevant to the SSAs.

2.79 Further discussion on broader competition considerations are outlined within the Seller lock-out, Buyer locked into seller, and Enhancing growth of the Australian technology sector sections of this report.

2.80 Notably new sustainability reporting requirements have come into force under Chapter 2M of the Corporations Act 2001 for financial years beginning on or after 1 January 2025.

2.81 No other key points of note were identified for:

  • APS Net Zero Emissions by 2030.
  • APS Reform Agenda.

Chapter 3: Benefits, costs and risks of the SSAs

Analysis of whether the benefits realised by the single seller arrangements (SSAs) outweigh any of the associated costs and risks.

Chapter overview 

The review identified that, overall, the SSAs enhance the digital procurement capability of the Australian Government and deliver significant value. Specifically, SSAs directly support the realisation of three primary benefits:

  • Greater discounts reducing purchasing costs, including price stability and predictability.
  • Improved efficiency in contracting through pre-negotiated arrangements, lowering overheads and reducing contracting costs.
  • More consistent and aligned terms and conditions which are pre-negotiated, improving contract compliance and risk management.

The review also identified a set of secondary benefits that further contribute to improving value for money outcomes. The primary and secondary benefits are depicted below.

The figure shows a summary of benefits delivered through existing SSA model, grouped by primary benefits and secondary benefits. Refer to the accordion for Figure 13 for a long description.
Figure 13 Summary of benefits delivered through existing SSA model

Chapter 3

Chapter 3

Secondary benefits

3.22 The review identified a range of other benefits of the single seller arrangements (SSAs) as secondary benefits. While these benefits are more difficult to quantify, they are important when assessing the overall value and relevance of the SSA model.

Enhancing growth of the Australian technology sector 

3.23 The review acknowledges the substantial contribution the SSA sellers make to Australia by employing a local workforce, establishing partnering arrangements with Australian companies and sponsoring a range of initiatives to foster innovation. 

3.24 Further, the review obtained a range of examples outlining the economic contributions the SSA sellers have made to Australia, including:

  • Fostering technical capability, such as Microsoft extending its skills program to 300,000 Australians and investment in TAFE NSW Datacentre Academy and Innovation Hub in Sydney, and IBM’s Australia Development Lab with branches across Sydney, Canberra, Brisbane and Perth and a Security Lab in Bundall, Queensland.
  • Investing in Australia’s digital skill development, such as IBM’s partnership with Soldier On and Specialisterne, which has enabled over 1,200 current and former Australian Defence Force personnel and those with neurodivergence to develop digital skills in cyber, AI and leadership through SkillsBuild.
  • Enabling critical infrastructure, such as the AWS Top Secret cloud enhancing Australia’s defence and intelligence capabilities.
  • Provision of training and education discounts, credits or initiatives under the SSAs, available to agencies utilising the agreements.

3.25 Collectively, these initiatives create a broad multiplier affect across the Australian economy. 

3.26 Nonetheless, the review consistently heard from both SSA sellers and buyers that there is scope to use the SSAs to improve fostering local industry participation. While CAIP and Skills Guarantee Plans are not a mandatory requirement, their absence represents a significant missed opportunity to harness substantial economic benefits within Australia. Stakeholders see an opportunity to:

  • More clearly shape CAIP and skilling expectations of SSA sellers, such as by requiring seller reinvestment initiatives and/or training and upskilling as a key criteria for SSA eligibility.
  • Improve the time allocation and of SSA review/design to ensure adequate time is allocated to strategic co-planning of such opportunities.
  • Define meaningful targets for Australian industry participation within the SSA – for example a define percentage (e.g. 10% to 20%) of the contract value – and requiring periodic reporting (e.g. quarterly) against these targets to support active management by the Australian Government.

3.27 Implementing a CAIP Plan (which can cover the Skill Guarantee components) by the SSA sellers will demonstrate a commitment to supporting local industries and ensuring the benefits of these agreements flow back into the Australian economy. Sellers who proactively implement such plans signal their alignment with national objectives and their dedication to maximising the broader economic impacts of their engagements – this, in turn, can be regarded as a key success factor to a strategic partnership with the Australian Government. Whilst not exhaustive, the strategies for inclusion in these plans was discussed in the Procurement and contracts section of this report.

3.28 Of course, any additional effort to create a more balanced approach needs to be considered against unintended consequences of new requirements, policy or legislation to ensure these do not bring added complexity or overheads to sellers.

3.29 An example of the demonstrated effectiveness of similar arrangements can be found in the Department of Defence’s Joint Strike Fighter (JSF) Program, which successfully established Australian companies in the global supply chain. The collaboration of the Australian companies with the international commercial leads, Lockheed Martin and Pratt & Whitney, resulted in over AU$5 billion in advanced manufacturing contracts. This in turn helped de-risk the sustainment of these jet fighters. 

Case Study: Driving Australian industry growth through the Joint Strike Fighter (JSF) Program

The Joint Strike Fighter (JSF) Program has demonstrated the profound economic impact that major government contracts can have on national industries. By leveraging key strategies, such as Australian Industry Participation Plans and targeted grant initiatives, the Australian Department of Defence has facilitated significant benefits for the local economy. This success offers valuable lessons for other initiatives, such as the potential of SSAs, to similarly bolster Australian industry.

Since its inception in 2002, the JSF Program has included Australian Industry Participation Plans with Lockheed Martin and Pratt & Whitney. These arrangements have ensured that Australian businesses play a crucial role in delivering components, sustainment services, and spare parts for the F-35 Lightning II. To date, over 75 Australian companies have benefited, securing contracts worth more than AUD $5 billion. 

This multi-generational initiative, projected to span 94 years, underscores the critical importance of long-term planning and strategic partnerships. Australia's involvement has been central to this global endeavour, and the benefits to Australian industry are undeniable.

A critical component of this strategy has been the New Air Combat Capability - Industry Support Program, established in 2010. Designed to support Australian companies and research organisations in developing new or improved capabilities, the grant program has enabled local firms to win production and sustainment work. These ongoing grants have helped businesses enhance their capacity to participate in the program's later phases, including sustainment and follow-on development.

However, the grant program alone would not have been sufficient to drive the observed growth. The combination of targeted grants and industry participation requirements ensured Australian businesses could compete on the global stage. This dual approach offers a potential blueprint for future initiatives, such as the SSAs, which could similarly unlock opportunities for Australian businesses and catalyse industry growth.

Of course, not all SSA sellers are manufacturing entities. Nonetheless, several SSAs expressed interest in exploring Australian industry participation in a manner consistent with the technology industry.

The success of the JSF Program highlights the power of major government contracts, coupled with a multi-pronged strategy to foster economic development. By enabling Australian businesses to participate in global supply chains, Australia has demonstrated the potential to cultivate a sustainable and competitive industrial base. The lessons learned from the JSF Program's economic impact can serve as inspiration for other government-driven efforts to support and develop Australian industry.

3.30 Further to these examples, a range of stakeholders engaged by the review indicated a willingness to engage in the identification and development of Australian industry-born ideas and products. Building on the CAIP Plans, and recognising the SSA sellers as leaders in the global technology marketplace, the Digital Transformation Agency (DTA) could co-design and establish a Technology Collaboration Centre (similar to Microsoft's recently established Innovation Hub in Sydney, which could complement this initiative) with the SSA sellers. This centre will enable the SSA sellers to come together and collaborate with Australian industry, in the interest of the Commonwealth, to support:

  • Identifying and further developing emerging technologies, including proofs of concept and prototypes.
  • Integrating and ensuring interoperability with the SSA seller’s product suite.
  • Developing sovereign data and digital capabilities.
  • Engaging of Australian industry in SSA seller global supply chains, and associated opportunities.
  • Creating engagement opportunities for Australian industry to connect with Australian Government buyers.

3.31 The DTA should enable broader outcomes for Australian industry by:

  • Working with DISR and buyers to implement CAIP Plans and Skills Guarantee targets with SSA sellers.
  • Working with the SSA sellers to implement a Technology Collaboration Centre, bringing SSA sellers, buyers and Australian industry together to identify and progress opportunities domestically and within global supply chains.

Improved ability to maintain critical technology

3.32 The SSAs make it easier for buyers to secure and maintain critical technologies essential to delivering government services to Australians by providing an established contractual means which can be leveraged by buyers to engage with the major technology sellers. In this way, the SSAs play an important role in ensuring continuity and resilience in government service delivery to the standards set by the Australian Government. 

3.33 Examples of these critical technologies the review heard are: 

  • Day-to-day operations of the Australian Government underpinned by Microsoft (M365 E5 suite), including Word, Excel, PowerPoint, Outlook, EntraID, etc.
  • Whole of Australian Government payment utility provided through a combination of SAP (S/4 HANA) and IBM’s Power10 Platform, which distributes the majority of Centrelink based payments, including Families, Parenting, and Pensions.
  • The Australian Taxation Office's (ATOs) Standard Business Reporting as the Business-to-Government (B2G) reporting gateway where employers submit accounting records.
  • Defence payroll for service personnel.
  • The Australian-based Top Secret Cloud, which AWS is developing for the Australian Government.

3.34 The SSAs help provide stability of the core technologies underpinning government service delivery in a rapidly evolving technological landscape, reducing the risks associated with service disruptions, cyber threats, or system failures. By securing reliable access to these critical technologies on behalf of all agencies, the Australian Government can uphold national security, safeguard sensitive data and maintain seamless interactions between buyers, sellers and Australians.

3.35 Several of the SSAs also include training for APS staff in these technologies. This supports the Australian Government in upskilling its staff, reducing reliance on external contractor support and enhancing staff mobility across the Commonwealth, as these skills are transferrable from place to place given the commonality of the technology.

3.36 Further, the SSA sellers collectively invest a substantial amount globally in research and development, and emerging technologies, independent of the SSAs. The Australian Government can indirectly leverage this global investment in innovation by the SSA sellers, helping to keep pace with changes in the global technology sector.

Leveraging centralised digital procurement expertise and support services

3.37 Government agencies can leverage centralised digital procurement expertise within the DTA and access a range of support services as part of the centralised SSA model. It is important, however, this does not replace the capability and responsibility for ongoing contract and delivery management by the buyer. In addition, the DTA is not funded to provide bespoke advisory support.

3.38 As the Alignment to policy, strategies and legislation section of this report shows, the digital procurement environment is complex and includes a substantial number of legislative, policy and technology considerations. Although some of the largest buyers (e.g. ATO, Defence) have in-house technology procurement teams, this expertise is not commonplace in smaller buyers. The DTA's centralised expertise and support helps buyers to understand their obligations, the way in which the larger technology vendors engage with the Australian Government commercially and the solutions which might best suit their requirements. This contributes to achieving the optimum value for money outcomes for the Australian Government.

3.39 Buyers also receive assistance in contract negotiations under the head agreement. This helps ensure buyers, particularly those with limited experience in complex negotiations, have access to expertise and reduce the likelihood of unfavourable terms. The DTA facilitates the use of the SSAs, manages overall compliance where there is a whole of Australian Government requirement and manages a limited number of central contracts under the SSAs, which are:

  • DTA's contract under the AWS SSA.
  • Central enrolments under the Microsoft SSA.
  • The DTA enterprise licensing agreement under the IBM SSA.
  • The Initial Software Contract under the SAP SSA.
  • The Oracle Java contract.

3.40 Centralised ongoing management of the head agreements strengthens the process by ensuring consistent monitoring of compliance, performance and pricing through centralised account management. This offers buyers a dedicated point of contact for resolving issues, providing updates, and maintaining oversight, which is especially valuable to the buyer in managing the contracts under the SSAs. Further, the centralised approach to data collection and reporting, supports adhering to policy obligations, maintaining accountability for contractual obligations on both sides and enables informed decision-making across the lifecycle of the SSAs.

3.41 Disputes are common in any complex contractual arrangement. While the DTA understandably does not provide legal advice to buyers regarding the SSAs, the SSA model offers a centralised point of contact for practical support with dispute resolution if required, and monitor seller performance, helping to:

  • Ensure potential conflicts are managed effectively and professionally.
  • Foster continuity of knowledge and a stable and constructive environment for all parties involved.
  • Address issues promptly, reducing the likelihood of prolonged conflicts that could delay project timelines or escalate costs.
  • Achieve consistency and transparency across the Australian Government. 

3.42 The presence of such support builds trust and confidence among stakeholders, enhancing the overall effectiveness of the SSAs. 

Chapter 3

Primary benefits

3.1 Stakeholders reported seeing benefits from the single seller arrangements (SSAs), particularly through:

  • Greater discounts reducing purchasing costs, including price stability and predictability, for all buyers regardless of size or respective buying power.
  • Improved efficiency in contracting through pre-negotiated arrangements, led by the Digital Transformation Agency (DTA), lowering overheads and reducing contracting costs for consuming agencies.
  • Consistent and aligned terms and conditions that are pre-negotiated, improving contract compliance and risk management and often result in more favourable outcomes for buyers.

3.2 These elements all contribute to improved value for money, as consistently recognised by all stakeholder groups, and are further detailed below.

Greater discounts - reduction in purchasing costs 

3.3 The SSAs aggregate demand across government, enabling the Commonwealth to negotiate better prices for some technologies. 

3.4 Although the specific value of these discounts for each of the SSA sellers is commercially sensitive (some sellers require the signing of Non-Disclosure Agreements and Deed Polls which place limits on the Commonwealth discussing or publishing key aspects of the deals e.g. discounts made available), analysis conducted with the DTA indicated the total value of these discounts was at least $1.6 billion to the Commonwealth over the period from July 2019 to June 2024. (For the avoidance of doubt, this is not a “saving” as per Finance nomenclature, rather it is a cost avoidance. This amount is a conservative estimate based on the available information reported to DTA. The methodology to calculate this for each SSA varied depending on the nature of the contractual arrangement. No discount value was included where amounts could not be reasonably substantiated, and lesser values were utilised wherever there was ambiguity in the discount amount which would have been realised under the contract.)

3.5 While the biggest buyers within the Commonwealth (e.g. Defence, Services Australia) often have sufficient buying power to negotiate suitable contracts, smaller buyers lack the same leverage. Without the SSAs, the review heard these smaller buyers would face significant potential implications, particularly in securing discounts and negotiating terms and conditions consistent with the Australian Government’s policy positions. Without the collective buying power of the SSAs, these agencies are likely to face reduced leverage in procurement negotiations, resulting in higher costs for technology products and services. 

3.6 Supporting the perspective that the SSAs reduce purchasing costs, 88% of survey respondents strongly agreed that discounts are a key monetary benefit of the SSAs. (Refer to Appendix D: Survey results.)

Improved efficiency in contracting

3.7 Buyers positively view the ability to leverage pre-negotiated arrangements, which reduces their spending on arrangement design, negotiation and management of large, complex head agreements. Commonly avoided costs include significant legal fees, administrative and procurement resource costs, and those costs associated with executive input and oversight. Survey respondents also identified lower procurement overheads (61% of respondents) and reduced contract management costs (59% of respondents) as benefits of the SSAs. Further details on the costs saved can be found the Costs section within this report.

3.8 This sentiment epitomises why the SSAs improve contracting efficiency. Smaller agencies benefit because they lack the capacity and resources to navigate complex technology contract negotiations. Of those surveyed, 80% identified simplified / streamlined procurement as a key benefit.

Connect with the digital community

Share, build or learn digital experience and skills with training and events, and collaborate with peers across government.

Join the Digital Profession