CyberPath Declaration

The CyberPath Declaration

Status: Version 1.0 Final Release

Published: 04MAY2026 

The Cyberpath Declaration is a statement of intent for the Cyber Community.  What it stands for, what it refuses to compromise on, and the future it is committed to building. It establishes a clear mission, distils purpose into principle, and turns shared beliefs into a unifying call to action.  

It will give the cyber community a common language, a shared identity, and a north star to steer by. It speaks to practitioners, employers, educators, and government not just what CyberPath is delivering, but why it exists.

At its core, CyberPath is a shared commitment to Australia's cyber workforce, built by industry, for industry. It is a call to Australia's cyber community to build, together, a profession with professional standards and a code of ethics worthy of our nation's future: 

CyberPath Values:

• Cyber Security as a National Capability 

• Industry‑Led, Community‑Driven, and Open by Design

• The Single Source of Truth for Cyber Workforce Standards 

• Honouring Diverse Pathways and Human Potential

• Built for Interoperability, Portability, and Global Alignment 

• Prioritising Competence, Ethics, and Public Trust

• Evolving Continuously, Together 

• A Shared Future

1. Cyber Security as a National Capability

Australia's cyber resilience depends on a workforce that is skilled, ethical, accountable, and trusted. CyberPath exists because cyber is now recognised as a strategic national-level profession.  One that underpins economic stability, public safety, and sovereign capability. A profession worthy of that responsibility.

2. Industry‑Led, Community‑Driven, and Open by Design

CyberPath is shaped by the people who do the work. It must be industry led for industry by industry and grounded in extensive codesign with practitioners, employers, educators, and communities across Australia. More than an accreditation, it is an ecosystem. It embraces transparency, co-design, and the ethos of open-source culture. This means:

• Knowledge should be shared freely, 

• Contributions should be welcomed from all,

• Transparency forms the foundation for trust and acceptance, 

• Collective stewardship is more powerful than individual ownership.

   

3. The Single Source of Truth for Cyber Workforce Standards 

Australia’s cyber workforce is fragmented, inconsistent, and difficult to navigate. CyberPath brings coherence by unifying roles, competencies, pathways, and learning into a national framework. A core outcome for CyberPath is common role definitions and competencies and acting as a single source of truth for cyber workforce planning and capability uplift. This provides clarity for employers, avoids duplication of effort, and harmonisation across government, industry, and the education standard.  The standard will be living and authoritative, maintained in collaboration with industry and evolving with threats, technology, and community needs

4. Honouring Diverse Pathways and Human Potential 

Cyber security is strengthened by diversity in background, thinking, culture, and experience. Non‑traditional routes into the profession will be recognised, and prior learning and experience including alternative pathways must be valued alongside formal education. No pathway should be a barrier to the profession, championing:

• Accessible pathways, 

• Recognition of real‑world capability not just paper credentials,

• Inclusive and neurodiversity affirming assessment, 

• Equitable participation for underrepresented groups.

   

5. Built for Interoperability, Portability, and Global Alignment

CyberPath aligns with international frameworks and best practices to ensure practitioners are globally recognised and Australia remains globally competitive. This alignment also ensures skilled migrants are not marginalised, avoids duplication, and strengthens Australia's credibility on the world stage.

The framework is open, modular, and interoperable, respecting existing investments into different workforce architectures and integrating seamlessly with global standards. Whatever the framework of choice, the destination is the same competency standard as that is all an adversary is looking for. Only competent professionals will deny, disrupt, degrade, or deter Australia's threats. 

6. Prioritising Competence, Ethics, and Public Trust 

Professionalisation is not about gatekeeping, it is about safeguarding the public interest and preserving our democracy and economic stability. Ethical conduct, accountability, and validated competence are the core pillars of the profession. Consistent standards of behaviour, skill, and responsibility reduce harm from unqualified practitioners, building a profession defined by integrity, not credentials alone.

7. Evolving Continuously, Together 

Cyber threats evolve. Technology evolves. The regulatory landscape evolves. Therefore, the workforce must also evolve, and at pace. As a national standard and baseline for competency standards, CyberPath must be agile, adaptable, and resilient to this change. Through embracing the terminology of anti-fragility, whatever change comes, Australia’s cyber workforce is prepared. The way to do this, is through a decentralised model where the community has its say and provides inputs.

At the same time, flexibility and adaptability are essential to living competency frameworks that update as risks and technologies change. It is also a pilot program, building the plane as it flies. Continuous improvement, open feedback loops, and a culture of lifelong learning are at its core. 

8. A Shared Future

CyberPath is more than a framework. It is a commitment. A collective effort to build a strong, diverse, ethical, and future-ready cyber profession for Australia. It must belong to the community. Shaped by the community. And it will succeed only when built together.

Author: Jakub Zverina