Free Webinar | Post-Leaders Summit Education Series
Aged Care Act 2024: Cybersecurity and Chapter 7
What Boards Need to Know
Criminal penalties. Director liability. Information management obligations. The rules have changed. This webinar gives aged care boards and executives the clarity they need to act.
Hosted by Greg Bunt, Co-founder and Fractional CISO, Insicon Cyber
Tuesday 9 June 2026 | 10:30am to 11:30am AEDT | Online via Microsoft Teams
Reserve Your Place
The Leaders Summit brought the sector together. This webinar goes deeper. If you left with questions about your legal obligations under the new Aged Care Act, your board's accountability for cyber risk, or where to start, this session is designed to answer them.
The Aged Care Act 2024 Has Changed Everything for Boards
Since 1 November 2025, Australian aged care providers have been operating under a fundamentally different legal framework. The new Aged Care Act replaces the 1997 Act and introduces strengthened Quality Standards, a statutory duty on responsible persons, and cybersecurity obligations embedded directly in compliance requirements.
Chapter 7 of the Act governs how information is collected, used, disclosed, and protected across the aged care system. It is not an IT concern. It is a board-level legal obligation.
2 years
Maximum imprisonment for cybersecurity failures under the Act
$165,000
Maximum fines for conduct causing death or serious injury
10x
More cyber attacks on aged care than hospitals in Australia
What You Will Learn in 60 Minutes
The New Regulatory Landscape
From Royal Commission to enforcement reality. What the Act replaced, what changed, and where penalties are being applied.
Why Cybersecurity Is Now a Board Issue
ACQSC expectations, personal director liability, D&O insurance implications, and what active governance oversight actually looks like.
Chapter 7: Information Management Deep Dive
Protected information, record-keeping obligations, information sharing duties, and whistleblower protections unpacked for boards.
Penalties and Personal Liability
Criminal sanctions, civil penalty proceedings, banning orders, and how the statutory duty on responsible persons applies to directors and executives.
The Broader Compliance Ecosystem
How the Aged Care Act intersects with the Privacy Act, SOCI Act, My Health Records Act, and Notifiable Data Breaches obligations.
What Boards Must Do Now
A practical six-step framework: cyber governance, Essential Eight gap analysis, vendor risk, incident response, workforce training, and whistleblower systems.
Who Should Attend
This session is designed for aged care leaders carrying governance responsibility. It is not a technical briefing. It is a board-level briefing on legal obligations, risk exposure, and practical action.
Board Directors and Chairs
Chief Executive Officers
Chief Operating Officers
General Counsel and Company Secretaries
Risk and Compliance Managers
Technology and Digital Leaders
Your Host
Greg Bunt
Co-founder, Director and Fractional CISO, Insicon Cyber
Greg Bunt has spent more than 25 years in cybersecurity, with 16 years at Director and C-level. As co-founder of Insicon Cyber, he works directly with Australian aged care boards and executives on cyber governance, risk management, and compliance frameworks aligned to the new regulatory environment.
A PECB ISO/IEC 27001 Senior Lead Implementer with direct experience advising aged care governing bodies, Greg brings the kind of practical, regulatory-aware perspective that boards need right now. Not theory. Not vendor pitch. Straight talk about obligations and action.
Not Sure Where You Stand?
After the webinar, attendees are invited to book a Cyber Gap Analysis with the Insicon Cyber team. We will assess your posture against the Aged Care Act 2024 and Essential Eight framework and give you a clear picture of where you stand and what to do next.
Learn About Our Cyber Gap AnalysisReserve Your Place
Tuesday 9 June 2026 | 10:30am to 11:30am AEDT
Free. Online. 60 minutes. Followed by live Q&A with Greg Bunt.
Register Now via Microsoft TeamsQuestions? Contact us at info@insiconcyber.com