Risk ManagementAustralia
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023
Made under Part 2A of the Security of Critical Infrastructure Act 2018, the CIRMP Rules require responsible entities for critical infrastructure assets to adopt and maintain a critical infrastructure risk management program covering cyber security, personnel, supply chain, and physical security hazards. Commenced 17 February 2023..
Domains
Supply Chain Hazard
Program Governance
Physical and Natural Hazards
Personnel Hazard
Cyber and Information Security Hazard
Compare Critical Infrastructure Risk Management Program (CIRMP) Rules 2023
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs ISO 27001:2022View comparison →Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs SOC 2View comparison →Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs NIST CSF 2.0View comparison →Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs GDPRView comparison →Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs HIPAAView comparison →Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 vs PCI DSS 4.0View comparison →
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 by Industry
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Healthcare→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Financial Services→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Technology→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Government→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Manufacturing→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Energy→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Retail→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Education→
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 by Role
Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for CISOs→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Compliance Officers→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Risk Managers→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for IT Directors→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for DPOs→Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 for Auditors→
Frequently Asked Questions
What is Critical Infrastructure Risk Management Program?
Made under Part 2A of the Security of Critical Infrastructure Act 2018, the CIRMP Rules require responsible entities for critical infrastructure assets to adopt and maintain a critical infrastructure risk management program covering cyber security, personnel, supply chain, and physical security hazards. Commenced 17 February 2023..
How many controls does Critical Infrastructure Risk Management Program have?
Critical Infrastructure Risk Management Program contains 15 controls organized across 5 domains.
Where does Critical Infrastructure Risk Management Program apply?
Critical Infrastructure Risk Management Program is applicable in Australia. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does Critical Infrastructure Risk Management Program map to?
Critical Infrastructure Risk Management Program has control-to-control mappings with 330 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with Critical Infrastructure Risk Management Program compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for Critical Infrastructure Risk Management Program (CIRMP) Rules 2023?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.