The Australian Government’s Security Legislation Amendment (Critical Infrastructure) Bill 2020 (the Bill) seeks to amend the Security of Critical Infrastructure Act 2018 (the SOCI Act) to implement an enhanced framework to uplift the security and resilience of Australia’s critical infrastructure.
As an owner and operator of telecommunications infrastructure and secure networks, we are actively engaged in industry consultations about the Bill and preparing for its implementation.
The Bill expands the coverage of the SOCI Act to the following critical infrastructure sectors: communications; financial services and markets; data storage and processing; defence industry; higher education and research; energy; food and grocery; health care and medical; space technology; transport; and water and sewerage.
Including to adopt, maintain, and comply with an all-hazards critical infrastructure risk management program and mandatory cyber incident reporting.
Providing assistance in response to significant cyber-attacks.
For systems of national significance. The enhanced obligations which may be imposed include statutory incident response planning obligation, cyber security exercises, vulnerability assessments and access to system information.