ICYMI, the six-month Critical Infrastructure Risk Management Program (CIRMP) obligation grace period has ended. From 18 August 2023, critical infrastructure entities in Australia are expected to have implemented the risk management program for their critical infrastructure asset (CIRMP).
According to the Cyber and Infrastructure Security Centre (CISC), under the CIRMP, critical infrastructure owners and operators are required to identify the risks and hazards that might have an impact on their asset. They must then - so far as it’s reasonably practicable to do so - take steps to minimise or eliminate that risk.
The CIRMP Rules are principles-based and allow for broad discretion in how you approach the management of hazards. Read more from the CISC: https://lnkd.in/gezs5c39
The Security of Critical Infrastructure (Critical infrastructure risk management program) Rules (LIN 23/006) 2023 are available at: https://lnkd.in/gzwdSjcR
If you have any questions about your site's physical security measures and electronic security systems, get in touch now