Join Us
We believe in building futures together. Whether you’re an experienced professional ready to take the next step, a student eager to learn, or a business looking to collaborate, there’s a place for you here. .
Case Study:
Leading Medical Imaging Provider – Essential Eight Cybersecurity Program
107
Client Organisation
The client is one of Australia’s largest medical imaging and radiology providers, delivering MRI, CT, ultrasound, mammography, and X-ray services nationwide. With patient data central to service delivery, the organisation faced increasing cybersecurity risks. Strengthening resilience was critical to maintaining trust with patients, meeting regulatory expectations, and supporting secure digital health service delivery.
Project Overview
An internal assessment highlighted gaps in maturity across the Essential Eight cybersecurity controls, exposing operational and compliance risks. The organisation required a structured program to uplift its cybersecurity posture within strict timelines and under complex stakeholder demands. Governance, vendor coordination, and technical program management were key priorities.
Sedha's Role
Sedha Consulting provided program leadership to deliver the Essential Eight uplift. Activities included:
Developing the business case and managing end-to-end program delivery.
Facilitating weekly project management forums and monthly steering committee reporting.
Coordinating internal IT teams, external vendors, and specialist technical resources.
Providing subject-matter expertise in Security Operations and IT Infrastructure.
Supporting tool and technology sourcing to strengthen Essential Eight controls.
Sedha worked collaboratively across workstreams, responded promptly to risks, maintained flexibility in delivery, and ensured momentum throughout the engagement.
Results
Cybersecurity maturity increased across all Essential Eight controls, significantly reducing operational risk. Formal governance structures and transparent reporting improved accountability and decision-making. Compliance obligations were strengthened and the organisation is now better aligned with ACSC’s Essential Eight framework. The program enhanced operational resilience, increased stakeholder confidence, and strengthened the organisation’s ability to safeguard sensitive patient data.