Secretaries’ Digital and Data Committee communique
Date: 02 July 2026
Secretaries Digital and Data Committee Decision-making Framework
Members endorsed the Secretaries Digital and Data Committee Decision-making Framework to strengthen the Committee’s focus on matters of whole-of-government consequence, support clearer decision pathways and improve accountability for implementation and follow-through.
Committing the APS to joined-up services for people and industry
The Committee noted work underway to strengthen joined-up services across high-volume programs and service interactions, including health and aged care, in the context of a broader whole-of-government services ecosystem.
Members discussed the complexities involved in delivering more integrated services, including fragmented legislation and secrecy provisions. The Committee also noted opportunities to use pre-fill for high-volume interactions, including aged care pension claims, and the value of fast, iterative testing to improve customer outcomes.
Clarifying Record Keeping and FOI Obligations relating to AI
The Committee noted the accelerating shift in AI-enabled work, observing that some prompts and outputs constitute ephemeral working material and are therefore consistent with existing recordkeeping practices.
The Committee confirmed that agencies and staff remain accountable for managing AI records in line with National Archives of Australia guidance, including capturing sufficient records to evidence decisions, advice and obligations. The Department of Finance will work with the National Archives of Australia and the Attorney General’s Department to develop and disseminate practical guidance.
Credential Protection Register
Members noted the successful deployment of Stage 1 enhancements to the Credential Protection Register (CPR) and intended early access launch of the CPR application in 2026.
Service delivery, cyber resilience and strategic investment
The Committee considered the increasing system-level risks arising from interconnected digital services and discussed proposed mitigation strategies. The Committee agreed remediation actions will now be progressed, alongside additional work to address emerging risks and strengthen overall system resilience.
Risk based approach to the Essential Eight
Members emphasised the importance of consistent interpretation, assessment and reporting of Essential Eight maturity across government, and identified opportunities to strengthen cross-agency collaboration to support shared approaches and sustained uplift. Members also discussed a principles, risk-based approach to Essential Eight implementation. The Committee acknowledged that cyber uplift is an ongoing effort requiring sustained prioritisation and investment.
Update on frontier AI models
The Committee discussed risks posed by frontier AI models and noted that these capabilities are materially changing the cyber security environment for government. Members noted that frontier AI models can accelerate vulnerability discovery, code review and threat analysis, but may also compress the time between vulnerability identification and exploitation, placing pressure on traditional patching, assurance and response settings.
Cryptographic modernisation
The Committee noted the status of a cryptographic modernisation program.
Application of AI within government SOCs
The Committee discussed emerging approaches to integrating artificial intelligence into government Security Operations Centres.
Members noted AI-enabled capabilities, including digital twin approaches, may support faster correlation, triage and prioritisation of cyber events, and emphasised the importance of working constructively with industry to improve cyber outcomes across government.
Other business
The Committee briefly discussed the strategic theme for the September 2026 SDDC meeting, which is Emerging Technology and Productivity.