How many controls does Critical Infrastructure Risk Management Program have?

Critical Infrastructure Risk Management Program contains 15 controls organized across 5 domains.

Where does Critical Infrastructure Risk Management Program apply?

Critical Infrastructure Risk Management Program is applicable in Australia. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does Critical Infrastructure Risk Management Program map to?

Critical Infrastructure Risk Management Program has control-to-control mappings with 330 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with Critical Infrastructure Risk Management Program compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

Critical Infrastructure Risk Management Program (CIRMP) Rules 2023

Made under Part 2A of the Security of Critical Infrastructure Act 2018, the CIRMP Rules require responsible entities for critical infrastructure assets to adopt and maintain a critical infrastructure risk management program covering cyber security, personnel, supply chain, and physical security hazards. Commenced 17 February 2023..

Domains

Supply Chain Hazard

Program Governance

Physical and Natural Hazards

Personnel Hazard

Cyber and Information Security Hazard

Frequently Asked Questions

Map Critical Infrastructure Risk Management Program (CIRMP) Rules 2023 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform