Senator GRIFF (South Australia) (14:32): In October estimates, the CEO of the Digital Health Agency stated the agency has 'a series of very advanced cybersecurity protections'. He further stated, 'there is absolutely no complacency', regarding cybersecurity in the agency. Minister, is it or is it not complacency when critical and paid-for risk assessments are not conducted, and cybersecurity strategies are allowed to gather dust for well over a year?