⚠️ Our phones are currently down. Please email us at info@brightstar.co.nz and we’ll get back to you as soon as possible. We apologise for the inconvenience.

Save 15% off Brightstar owned or partnered conferences and training courses – use promocode ‘SPRING15’ at checkout. View All Events.

NZ Security Agencies Urge Cyber Vigilance: “Don’t Click on Dumb Sh*t”

“Don’t click on dumb sh*t” and prioritise governance.

At the recent National Cyber Security Summit, New Zealand’s top security agencies delivered a stark message: cyber security is not just an IT issue, it’s a critical governance and people-centric challenge. 

Graeme Muller, Chief Executive of NZTech, initiated the discussion by asking for the key piece of advice for organisations navigating the digital landscape. Andrew Clark, Director General and Chief Executive of the Government Communications Security Bureau (GCSB), responded with a blunt but effective mantra: “Just don’t click on dumb shit.” He emphasised the importance of basic cyber hygiene, such as two-factor authentication, and stressed the need for robust governance frameworks, urging organisations to utilise the NCSC’s cybersecurity framework. 

Clark further advocated for boards and CEOs to actively engage in risk assessments and participate in table-top exercises to simulate cyberattack scenarios. This, he argued, would foster a deeper understanding of potential threats and vulnerabilities. 

Andrew Hampton, Director General of the NZ Security Intelligence Service (NZSIS), echoed Clark’s sentiments, highlighting the gap between board-level anxiety and effective action. He stressed the importance of a holistic, organisation-wide approach to cybersecurity, advocating for frameworks that ensure alignment between boards, technology professionals, and security teams. 

Panel Discussion from the National Cyber Security Summit 2025, with Graeme Muller, Andrew Clark & Andrew Hampton

“Having your board and your technology and security professionals all on the same page and asking ‘what are the potential threats we are facing, how have we secured our environment, how do we validate that, how have we built security into our principles, do we know who we partnered with and the risks that go with them,” Hampton stated. 

The conversation underscored the critical role of people in cybersecurity. Both Andrews emphasised the importance of educating and training staff to recognise and avoid phishing attacks and other social engineering tactics. As Muller pointed out, the “don’t click on dumb sh*t” advice is fundamentally about people and their understanding of the implications of their actions. 

The agencies also addressed the growing concern about attacks on critical infrastructure. Hampton highlighted that these attacks pose the most significant threat to New Zealand, given the essential services they provide. Clark added that the increasingly complex global and domestic security environments necessitate a strategic allocation of resources and stronger partnerships. 

“The global environment we’re facing is probably the most challenging we’ve seen in a generation”

Andrew Clark, Director General and Chief Executive of the Government Communications Security Bureau (GCSB)

“The global environment we’re facing is probably the most challenging we’ve seen a generation,” Clark said, emphasising the need for collaboration between agencies and private sector organisations. He further noted the shift towards greater transparency and information sharing by security agencies. 

The summit concluded with a call to action: organisations of all sizes must prioritise cyber security as a fundamental aspect of their operations. The key takeaways included: 

  • Basic Cyber Hygiene: Implement two-factor authentication and educate staff to avoid phishing attacks. 
  • Governance and Risk Assessment: Boards and CEOs must actively engage in understanding and mitigating cyber risks. 
  • People-Centric Approach: Invest in training and education to empower staff to be the first line of defense. 
  • Table-Top Exercises: Simulate cyberattack scenarios to test response plans and identify vulnerabilities. 
  • Partnerships and Information Sharing: Foster collaboration between organisations and security agencies to share threat intelligence. 
  • Critical Infrastructure Protection: Prioritise securing essential services to minimise the impact of potential attacks. 

 

By adopting these principles, New Zealand organisations can strengthen their cyber defenses and contribute to a more secure digital environment. 

Continue the conversation...

Digital transformation demands proactive cyber risk management, beyond mere defense. Leaders must identify and measure risks, driving future-proof solutions. The Cyber Security Risk Conference explores this evolution, aligning with themes from the National Cyber Security Summit, offering deeper insights for practitioners.

Discover events in Technology, Cyber, Data & CX

Facebook
LinkedIn
Print

More Articles

Article

CFO Summit and Awards | 4 September 2025 | Cordis Hotel Auckland Inspiring excellence — meet the winners In an

Article

Leading AI & Digital Strategy Workshop For School Principals & Senior Leaders in Education 9am – 4pm | Thursday 23

Article

Panel discussion: New Zealand trade and exports in a volatile world MC: Rowena Duncum, NZME Rural Lead JournalistThomas Macdonald, Chief

Article

New crop of PINZ Award finalists named Rural heroes who made their mark advocating for pragmatic regulation and supporting stressed-out

Brightstar Spring Sale Promotion Terms & Conditions

1. The Offer

This promotional offer is for a 15% discount on the current advertised price of eligible Brightstar owned and partnered conferences and public training courses.

2. Promotional Period

The Spring Sale promotion is valid only from 13 October 2025 through 15 November 2025 (the “Promotion Period”).
All course and conference registrations must be fully completed, paid for, and confirmed by Brightstar within the Promotion Period to qualify for the discount.

3. Eligibility and Redemption

3.1 Eligible Products

The discount applies only to the standard price of Brightstar’s public training courses and conferences as listed on the Brightstar website.

3.2 How to Redeem

To receive the 15% discount, customers must enter the promotional code SPRING15 during the checkout process.

3.3 Exclusions and Limitations

The discount does not apply to, and cannot be used for:
• Custom, private, or in-house training programs.
• Courses or conferences already registered for, or attended, prior to the Promotion Period.
• Any associated costs, including but not limited to, taxes, travel, or accommodation.

3.4 Discount Stacking

This 15% discount cannot be combined with any other offer, promotion, coupon, or discount code. If an eligible course is already subject to another discount, the customer will receive the greater of the two discounts, but not both.

4. Payment and Enrollment

4.1 Full Payment Required

Full payment of the discounted course or conference fee is required at the time of registration. Enrollment is not confirmed until full payment is received and processed by Brightstar.

4.2 Standard Terms Apply

All bookings are subject to Brightstar’s standard terms and conditions of sale for training and conferences, which are available here.

5. Transfers, Cancellations, and Refunds

5.1 Refund Policy

In the event of a cancellation or request for a refund, the refund amount will be calculated based on the actual discounted price paid by the customer, not the original standard price. Standard Brightstar cancellation policies apply.

5.2 Registration Transfers

If a registration is transferred to another individual, no further or additional discount will be applied to the new registration.

6. General Provisions

6.1 Right to Modify

Brightstar reserves the right to modify, suspend, or terminate this promotion, including these Terms and Conditions, at any time without prior notice. However, all registrations completed and fully paid for prior to such modification or termination will be honored.

6.2 Acceptance of Terms

By proceeding with a registration using the promotional code [SPRING15], the customer agrees to be bound by these Terms and Conditions.

Times are tough, but professional development doesn't have to be

Invest in your team with our Buy One, Get One Free conference ticket offers across a number of our February-March events. Hurry, offers end 20 December!