Cybersecurity at Westpac

Our position

The cybersecurity threat environment is dynamic and at Westpac we take the security of customer data and our systems very seriously. 

From ensuring our customers can save, transact, and borrow with confidence, to supporting the financial needs of small businesses, multi-national corporates, institutional, and government clients, our customers are at the centre of everything we do.

To achieve our purpose and strategy, Westpac understands that preserving the confidentiality, integrity, and availability of the information we rely upon is essential to how we run our business.

Our approach, policies & actions

Westpac’s cybersecurity approach aligns with international industry standards such as the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF). This includes six core principles:

1. Govern - establish, communicate, and monitor the cybersecurity risk management strategy
2. Identify - understand current cybersecurity risks
3. Protect - deploy appropriate safeguards to manage cybersecurity risks
4. Detect - implement measures to find and analyse possible cybersecurity attacks
5. Respond - have processes and procedures to respond to cybersecurity incidents
6. Recover - have processes and procedures in place to ensure that assets and operations affected by a cybersecurity incident are restored.

To find out more about how Westpac protects your data, see our Westpac Cybersecurity Statement (PDF 634KB).

Our progress

We report regularly and aim to be as transparent as possible to enable stakeholders to compare our relative performance over time.

Find out how we seek to create economic, social and environmental impact in our Annual Report and Climate Report.