CISC Newsflash: Edition 11

From the desk of Sam Grunhard, Head, Cyber and Infrastructure Security Centre

Welcome to the 11th edition of the CISC Newsflash – and sadly, my last as Head of the CISC. Today, Friday 25 August 2023, is my last day with CISC and with the Department of Home Affairs, as I’m moving to the Department of Infrastructure, Transport, Regional Development, Communications and the Arts. I would like to pass on my gratitude to all those I have worked with in this role – both across Government and within industry. It’s been a tremendous honour to partner with you all on the security and resilience of our critical infrastructure.

Of course, the mission goes on, and I would like to welcome, Jim Anderson who will be acting as Head CISC. Jim Anderson has extensive experience supporting Australia’s critical infrastructure and will continue working with you all to ensure the security and resilience of Australia’s critical infrastructure.

In one of my final actions, I was pleased to record CISC’s inaugural podcast series – ‘The Trusted Insider’. The podcast – available now on all good podcast hosting platforms – features expert guests covering threats of foreign interference, supply chains, risks to the aviation sector and more.

I was also pleased to participate in three virtual town events we hosted in the run up to the end of the Critical Infrastructure Risk Management Program grace period – which ended on 17 August. You can watch a recording of the town hall we hosted on 17 July 2023 on our website.

In this edition, you can also read about AusCheck’s critical work supporting the FIFA Women’s World Cup and TISN’s continued expansion. Thank you for support. Safeguarding Australia’s critical infrastructure has been a challenge and an honour. I wish you all the best for the future.

CISC takes to the airwaves with new podcast

As part of our ongoing commitment to engaging with owners and operators in ways that are contemporary, convenient, and accessible, CISC has launched a podcast – which is available now.

Our first series is the ‘Trusted Insider’, which examines the risk of insider espionage, sabotage, and the malicious use of unauthorised access or information to cause harm to Australia’s critical infrastructure.

Across four episodes, the series features a range of experts from government, the national security community and from industry. By subscribing, you'll have a front row seat as we dive deep into all aspects of the insider threat and give you the tips and information you need to mitigate it.

We have plans for other podcast series, and in due course a second season of the Trusted Insider; so please contact us today if you have suggestions, feedback, or would like to be a guest.

CIRMP obligation – grace period has ended

The six-month grace period for the end of the CIRMP obligation ended on 17 August 2023.

All critical infrastructure owners and operators must now have implemented a written CIRMP.

The CIRMP Rules will complement, and where relevant, enhance existing risk management practices. The Rules will strengthen the resilience of critical infrastructure assets by embedding preparation, prevention, and mitigation activities into ongoing business practices. They will also provide greater situational awareness of threats to these assets.

We recognise that implementation of a CIRMP will be an extensive task for some entities and we will assist you whenever possible, regardless of the size and maturity of your business.

We have further information on the CIRMP obligations available on our website, as well as comprehensive guidance documents, asset class definitions and a recorded town hall session.

AusCheck FIFA Women’s World Cup

The 2023 FIFA Women’s World Cup has taken Australia by storm with the Matildas doing all Aussies proud and rocketing up the table. This is the biggest FIFA Women’s World Cup in history, with ticket sales exceeding 1.5 million.

Major National Events (MNEs) such as the Cup can also be an attractive target for terrorists, criminals, and trusted insiders – which is why the work of AusCheck in providing background checking services for MNEs is so vital.

The 2023 FIFA Women's World Cup was declared an MNE in June 2021, and since that time AusCheck has been supporting the security and good order of the Cup by conducting background checks on relevant workers and volunteers. All in all, almost 40,000 checks have been conducted – providing a vital level of personnel security and supporting Australia’s love of the beautiful game.

TISN Expansion continues!

TISN expansion continues with three new Sector Groups - Land Transport, Government, and Mining. Expansion of the TISN is Activity 1 in the Critical Infrastructure Resilience Plan, launched by the Minister for Home Affairs in February 2023, so we’re pleased to have welcomed the Land Transport, Government, and Mining sector groups to the network.

The Government Sector Group is the primary forum for all levels of government to share information and collaborate to plan, prepare, respond and recover in the face of all-hazards to critical infrastructure. Members of the Government Sector Group comprise local governments, state and territory governments, and the Commonwealth Government.

The Land Transport Sector Group will engage with entities across the land transport sector including; road and rail infrastructure, freight and logistics, public transport systems, owners, operators and service providers of land transport assets and infrastructure, and local, state, territory and federal government.

The Mining Sector Group encompasses extraction, processing, export, bulk storage, and transport involved in the mining industry. The key stakeholders are owners and operators of mining infrastructure, producers and distributors of chemicals and mining products, and government regulators.

If you’re not already a member, request to join the network today.