IAA Newsletters
What a start to the IAA Convergent Event Series! From Hobart to Melbourne, and with a standout online panel in between, we’ve been celebrating 30 Years of Peers with style. And the celebrations are far from over.
Here’s a quick recap and a taste of what’s still to come.
Make sure you secure your spot for the next events. We’d love to see you there!
Hobart – a night to remember!
Our first stop on the Convergent tour was the beautiful Frogmore Creek Wine Bar in Hobart. We kicked off the 30 Years of Peers anniversary celebrations in partnership with TasICT.
Online Panel – Outsmarting the smart home
We went digital with a lively and insightful panel exploring the security challenges of smart home tech and how ISPs can step up to the task.
Thank you to Matt Tett (Enex TestLab), Cameron Steel (IAA), and Narelle Clark (IAA CEO and moderator) for an insightful discussion.
Catch the replay on the IAA YouTube channel.
Melbourne – small-batch gins and big conversations
Little Lon Distilling Co. played host to a night of handcrafted gin, canapés, and connection. We toasted to three decades of peering excellence in the heart of Melbourne’s laneways.
Up next...
Adelaide
Date: Wednesday, 21 May 2025
Time: 5:30 PM – 9:00 PM ACST
Venue: Prohibition Liquor Co. | 22 Gilbert Street | Adelaide
Join us for a guided gin tasting, ping pong, canapés, and great conversation as we celebrate in Adelaide.
Sydney
Date: Wednesday, 4 June 2025
Time: 5:30 PM – 9:00 PM AEST
Venue: Brix Distillers | 350 Bourke Street | Surry Hills | Sydney
This event includes a guided rum tasting, a behind-the-scenes distillery tour, and the chance to connect with your peers in a relaxed setting.
Perth
Date: Wednesday, 30 July 2025
Time: 5:30 PM – 9:00 PM AWST
Venue: Varnish on King | 75 King St | Perth
This event includes a guided whisky and bacon tasting and the chance to connect with your peers in the warm, eclectic surrounds of Perth’s Varnish on King.
COMING SOON
Brisbane
Date: End of June 2025
Time: 5:30 PM – 9:00 PM AEST
Venue: TBC
Read More
What a fabulous time we had at the very first IAASysters NZ! It was inspiring to connect with so many incredible women in tech—thank you to everyone who joined us. Check out some of the highlights below. We’re thrilled to expand the IAASysters franchise across the Tasman and can’t wait to host it again alongside NZNOG next year.
Onwards to Melbourne!
Now, we’re turning our thoughts to Melbourne, and once again we’ve been blown away by the calibre of applicants. We’ll be announcing the successful participants soon and look forward to seeing you there in September at AusNOG!
Interested in sponsoring this powerful initiative?
Read More
Last month, the team headed to Napier for NZNOG—and what a time we had! Alongside the inaugural IAASysters NZ event, we caught up with our friends across the ditch and proudly represented IAA.
Matthew Kobayashi, from our Tech Team, gave an update on NZ-IX, while our Events & Marketing Manager, Sabrina Chang-Rozario, shared a behind-the-scenes look at our events initiatives.
We returned with arms full of merch, heads full of ideas, and plenty of new connections. A wonderful time was had by all!
Read More
In February, the IAA team travelled to Petaling Jaya, Malaysia for APRICOT 2025. We’re proud to sponsor this key event for the Asia Pacific internet community.
Our Events & Marketing Manager, Sabrina Chang-Rozario, gave a presentation on IAA’s events initiatives and joined a panel discussion on community outreach.
Tech Team Lead, Aaron Chidiac, was also on the ground, catching up with peers, taking part in technical sessions, and flying the flag for IAA.
We had a fantastic time reconnecting with the community, forging new relationships, and bringing back fresh ideas to share with the team.
Read More
We’re proud to support the 2nd annual Data Centre Real Estate Summit – bringing together the big players in tech, real estate, and investment to shape the future of Australia’s data centre landscape.
Date: 19 June 2025
Venue: Doltone House, Sydney
Member discount code: DCRE25IAA
Read More
With the federal election over and a returning Labor Government, we anticipate busy times ahead. Regulatory reform for the telco sector is already well underway with the:
- Security of Critical Infrastructure (SOCI) obligations – commenced 4 April;
- new ACMA rules relating to network outages involving communication requirements and changes to your complaints handling policy – commencing 30 June; and
- changes to the TIO’s complaints handling processes – commencing 1 July.
We’re proud to say that our advocacy work has had some impact in reducing some of the burdens on industry. We’ve managed to ensure the positive security obligations under the SOCI framework will be limited to carriage service providers with over 20,000 services in operation (or those that supply to government). Our consistent engagement with the ACMA has also resulted in the regulator releasing more educative information alongside new regulation.
You can read more about the SOCI obligations in this newsletter article, the ACMA rules on its website and the TIO changes on the TIO Portal. We are also working on developing updated legal templates that are compliant with the new ACMA rules and will make them available on the IAA Member Portal in due course so please keep posted!
In March, a telecommunications consumer protections Bill was tabled at Parliament to introduce the CSP Register, give the ACMA directly enforceable powers and increase penalties for non-compliance. Though this lapsed due to the election, we anticipate this will be prioritised by the new or returning Communications Minister.
Other things to watch out for includes a new domestic, family and sexual violence industry standard for telcos which we think may land any day now, as well as the revised TCP Code which we understand will soon be submitted to the ACMA for registration.
The Public Policy Advisory Panel will be meeting later this month to discuss all the above and more so please let us know if you have any concerns, or if you’d like to join the discussion!
And as always, please get in touch to share any thoughts on any of the open consultations below and/or previous submissions as we really appreciate your feedback.
Open consultations
Completed submissions
March 2025
Read More
The subordinate legislation under the Security of Critical Infrastructure Act (SOCI Act) and the new Cyber Security Act affecting the telecommunications sector commenced on 4 April 2025.
These instruments introduce new rules for the telco industry, as well as changes to existing obligations, consolidating security regulations that were previously contained under the Telecommunications Act framework into the SOCI legislative framework. Below is a summary of the regulations.
Telecommunications Security and Risk Management Program Rules (TSRMP Rules)
Telco entities that hold a carrier licence, supply over 20,000 carriage services, or supply services to Commonwealth Government entities are subject to more stringent obligations under the new TSRMP Rules.
This involves:
- implementing and maintaining a risk management program by 4 October 2025. Providers will have to submit an annual report in relation to its risk management program by 28 September from FY26;
- compliance with at least maturity level 1 of a cyber security framework by 4 October 2026 (further obligations for carriers to comply with maturity level 2 by 4 October 2027);
- obligation to ‘protect your asset’ as far as it is reasonably practicable to do so. Carriers have further obligations to notify the Department of Home Affairs of any changes to your asset that is likely to have a material adverse effect on your ability to protect your asset.
Asset Register and Mandatory Cyber Incident Reporting Rules
Rules requiring telco entities to register their critical assets, and notify the Department of a cyber incident have been folded into the SOCI framework.
However, these rules now only apply to entities with a carrier licence, or meet the ‘relevant carriage service provider asset’ threshold of over 20,000 services in operation, or supply to the Commonwealth Government.
SOCI rules affecting all telcos
Even if you are not a carrier or don’t meet the ‘relevant carriage service provider asset’ threshold, telecommunications assets are still captured under the SOCI Act as critical infrastructure. This means you may still have obligations to:
- notify your data storage or processing provider that it is storing or processing your business critical data; and
- following Ministerial directions in relation to serious incidents affecting your asset.
Subordinate cyber security rules
New security standards for smart devices were introduced in March 2025 with the rules commencing 4 March 2026. The rules apply to both manufacturers and suppliers of ‘relevant connectable products’ and is therefore likely to affect telco entities.
The standards introduce 3 rules for manufacturers in relation to their products, including ensuring each device has a unique password or allowing the consumer to create own password, ways for consumers to report security issues and clearly providing information on the support period for security updates.
The manufacturer must also prepare a Statement of Compliance in respect of the rules. Suppliers must then provide this Statement of Compliance with any relevant connectable products they supply to consumers in Australia and must retain the Statement for at least 5 years.
IAA recently held a webinar on IoT Security on 3 April, which included a discussion on the new rules.
Additionally, from 30 May 2025, all entities with an annual turnover of at least $3 million must report ransomware payments to the Department within 72 hours of the ransom being paid.
Please refer to the below summaries and guidance material provided by the Department in respect of these new rules:
- SOCI Act – Summary of changes;
- SOCI Act – Telecommunications Guidance;
- Smart Devices Standard Guidance; and
- Ransomware Reporting Guidance.
IAA will also soon publish a template risk management plan that Members can utilise to assist with their compliance efforts on the IAA Member Portal.
You can also join the Trusted Information Sharing Network for access to further critical infrastructure information and resources.
Please contact us if you have any questions about these new rules.
Read More
Welcome to our newest Professional Members:
Margaret Boston
Charlie Evans
Donny Gunadi
Kiera Horomia
Hannah Leeder
Gerard O’Leary
Mike O’Connor
Jonathan Patsanas
David Rinaldo
Tarris Thiedecke
Bruce Tonkin
Ming Wong
Welcome to our Corporate Members:
Neptune Internet Pty Ltd
We are pleased to welcome Neptune, the latest ISP to join our peering network. Based in Melbourne, Neptune delivers high-performance internet services, supported by a team of highly skilled Australian experts who are always ready to assist. Their membership stems from both an interest in IX services and the community aspects of IAA.
Vetta Online Ltd
We’re excited to welcome Vetta Online to the peering network under their own port! Vetta has been delivering internet services since 2010, steadily growing from a national provider into one with its own international network backbone, offering some of the fastest and most reliable connectivity in New Zealand.