The inquiry into the Bondi Junction stabbing massacre is hunting a ghost.
In the wake of the tragedy, a lazy consensus has gripped the media, the public, and bureaucratic oversight bodies. The narrative is comforting in its simplicity: if only the New South Wales Police had conducted a formal threat assessment on Joel Cauchi before he walked into that shopping center, the attack could have been averted. Discover more on a connected topic: this related article.
This is a dangerous delusion.
The fixation on administrative failure—bureaucratic paperwork that wasn't filed, databases that weren't cross-referenced—is a coping mechanism. It protects us from a much harsher reality. The problem isn't that the police failed to predict the unpredictable. The problem is that our entire framework for "threat assessment" is built on a flawed premise that actively drains resources away from real, actionable security. Additional journalism by Al Jazeera explores similar views on this issue.
The Illusion of the Predictable Monster
Public inquiries love paper trails. They operate on hindsight bias, working backward from a catastrophe to find the exact point where a bureaucrat should have seen the future.
In the Bondi case, the finger-pointing centers on the revelation that Cauchi was known to police in multiple states but slipped through the cracks because no formal, centralized threat assessment triggered an intervention.
This assumes a compliance-based model of human behavior. It posits that violent actors follow a neat, linear trajectory of radicalization or escalation that can be charted on a spreadsheet.
It ignores the reality of lone-actor violence.
I have spent years analyzing operational risk and intelligence failures. The hardest truth to swallow is that a vast number of mass casualty attacks are committed not by organized cells with interceptable communications, but by profoundly isolated, mentally unraveling individuals.
When an individual has no political manifesto, no fixed address, no digital footprint of operational plotting, and moves fluidly across state lines, a "threat assessment" is nothing more than a post-it note on a fridge full of red flags.
The Data Problem: Hiding in the Noise
To understand why the "lack of threat assessment" argument is a red herring, you have to look at the sheer scale of the data pool.
Every single day, front-line police officers deal with thousands of individuals exhibiting erratic behavior, severe mental health crises, and low-level anti-social tendencies.
Imagine a scenario where a state police force decides to flag every person who matches Joel Cauchi's pre-attack profile: history of mental illness, transient lifestyle, sporadic police contact, and an unhealthy fixation on knives.
In a country of 26 million people, that profile doesn't narrow the field to a single potential attacker. It generates a database of tens of thousands of citizens.
- The False Positive Trap: If you flag everyone, you flag no one. The administrative burden of monitoring thousands of low-level, non-criminal individuals paralyzes investigative units.
- The Resource Drain: Every hour an analyst spends updating a passive "threat file" on a transient individual is an hour stolen from active tactical intelligence.
- The Legal Wall: In a free society, police cannot pre-emptively detain someone for being weird, broken, or creepy.
The inquiry's outrage over a missing threat assessment implies that generating a document somehow magically grants police the legal authority or physical resources to neutralize a threat. It doesn't. A threat assessment without an actionable, legal mechanism for intervention is just an expensive obituary written in advance.
Stop Confusing Intelligence with Administration
We have created an industry around risk mitigation that prioritizes institutional cover over actual safety.
When a failure occurs, the immediate institutional reflex is to invent a new form, create a new task force, or mandate a new assessment protocol. This is security theater for the bureaucratic age.
True intelligence work is dynamic, aggressive, and dirty. It relies on human intuition, rapid tactical communication, and decentralized decision-making. Threat assessment frameworks, by contrast, are often sluggish, backward-looking exercises in compliance. They are designed to protect the agency from liability after the fact, not to stop a knife attack in a crowded mall.
The Tyranny of the Checklist
Consider how a standard risk assessment operates. An officer fills out a matrix. Points are assigned for past violence, access to weapons, and expressed intent.
But lone actors frequently bypass these metrics. They don't express explicit intent to a handler. They don't buy black-market firearms that trigger border force alerts. They buy a kitchen knife at a department store twenty minutes before they begin killing.
By demanding that police forces rely heavier on formalized threat assessments, we are forcing them to fight a asymmetric, chaotic threat with a clipboard.
The Uncomfortable Truth About Mental Health and Policing
The Bondi inquiry inevitably collides with the intersection of policing and mental health. The public wants police officers to act as psychiatric triage nurses, diagnosing potential mass killers on the street and funneling them into a mental health system that is already buckled under its own weight.
This is a structural impossibility.
Police are trained for compliance and crisis management. They are not clinicians. Expecting a beat cop to read the latent homicidal intent in a brief interaction with a transient schizophrenic man—and demanding they launch a formal threat assessment based on that interaction—is absurd.
Furthermore, the clinical community itself admits that predicting violence in mental health patients is notoriously difficult. The vast majority of people suffering from severe mental illness are victims of violence, not perpetrators. The subset that shifts from self-harm or erratic behavior to mass public violence is infinitesimally small.
By demanding that the police "fix" this through better profiling, we are asking them to solve a systemic societal failure with tactical gear.
Moving the Goalposts: Radical Decentralization
If the current fixation on centralized threat assessments is a dead end, what actually works?
We have to abandon the fantasy of total prevention. No amount of funding, no advanced AI profiling tool, and no cross-border database will ever achieve zero-risk in an open society. The moment you decide that public spaces should be completely free of unpredictable violence is the moment you accept a total surveillance state—and even then, it fails.
Instead of pouring resources into top-heavy bureaucratic assessment structures that generate paperwork, the focus must shift to radical decentralization and immediate tactical response.
1. Kill the Inter-Agency Silos (Without the Paperwork)
The problem isn't that a threat assessment wasn't written; it's that basic operational data doesn't move fast enough. Queensland Police and NSW Police shouldn't need a formal, months-long risk assessment pipeline to know if a high-risk individual has moved jurisdictions. They need real-time, zero-friction digital ledger sharing on basic police contacts. Strip away the analytical fluff and give front-line cops immediate visibility on raw data.
2. Hyper-Localize Tactical Readiness
The Bondi attack was stopped not by a specialized counter-terrorism unit or a team of intelligence analysts reading a threat assessment. It was stopped by a single, courageous local police inspector who ran toward the danger and neutralized the threat.
That is where the money belongs.
- Ditch the Analysts, Train the Beat Cops: Shift funding from back-office risk assessment teams to advanced, continuous active-shooter and mass-casualty training for ordinary highway patrol and general duties officers.
- Empower Private Security: Stop treating mall security guards like customer service reps in high-vis vests. If private entities are going to profit from massive public gatherings, they must be mandated—and trained—to provide meaningful, first-line physical intervention.
3. Establish Brutally Honest Thresholds
We need to explicitly define what police can and cannot do. If the state is not prepared to lower the threshold for involuntary psychiatric detention—a move that carries massive civil liberties risks—then it must stop blaming the police for failing to keep these individuals off the streets. You cannot have Scandinavian civil liberties and expect American-style pre-emptive law enforcement. Choose one.
The Bondi Junction inquiry will likely end with a predictable set of recommendations. There will be calls for "enhanced information sharing," "standardized threat assessment tools," and "increased funding for inter-agency task forces."
Everyone will nod. New policies will be drafted. Millions of dollars will be spent.
And the next time a deeply disturbed individual snaps and grabs a weapon in a public space, the system will fail again. Not because the police didn't do their jobs, but because we refused to admit that a clipboard cannot stop a knife.
