CIRMP

Events

Events Search and Views Navigation

Event Views Navigation

Today

  • Introduction to the SOCI Act and Risk Management Program obligations – August 19th 10am

    Online , Australia
    Virtual Event

    The Security of Critical Infrastructure Act 2018 (SOCI Act) establishes obligations for responsible entities to protect critical infrastructure assets, with Telecommunication Carriers and CSP's identified with requirements to meet under the Act.

    Obligations include Asset Registration, Mandatory cyber incident reporting, developing and maintaining a risk management program (RMP) and submission of an Annual Report to the Cyber and Infrastructure Security Centre (CISC).

    Pentagram Advisory and WISPAU will be hosting an online event that will provide an understanding of the SOCI Act, the obligations of Telecommunication Carriers and CSP's under the act as well as a brief of upcoming group training available that will assist in developing a Critical Infrastructure Risk Management Program, conducting security risk assessments and mastering of the requirements under the SOCI Act.

    Presented by Marina Shteinberg and Tim Slattery, this online event will provide further information into the obligations required and how to gain the skills to meet the requirements.

    Marina Shteinberg

    Marina Shteinberg


    Tim Slatttery

    Tim Slatttery



    Date: Tuesday 19th August 10am (AEST)
    Where: Online
    Free

  • SOCI Act

    Home Affairs presentation on SOCI Act Obligations

    Online , Australia

    Eloise Clare, Acting Assistant Secretary Critical Infrastructure Regulatory Operations and Analysis from the Department of Home Affairs will present to WISPAU Members details on the SOCI Act, obligations to WISPs and telecommunication companies under the Act, as well as information on how members can meet the act and how it may apply to them.

    The presentation will detail information also on asset registration and ongoing obligations for risk management and cybersecurity improvements over the next few years.

    At the end of the presentation will be opportunities for WISPAU members to ask questions and clarification on the Act, their obligations, time frames and how they can meet the requirements.

    We encourage all members to attend, and also ask any questions that they may have in regards to the SOCI Act.

  • Pentagram Advisory CIRMP Maturity

    SOCI Workshop: CIRMP Security Maturity Assessment and Evaluation Framework

    Online , Australia

    Learn how to assess, benchmark, and strengthen the maturity of the security effect of your CIRMP.

    Summary

    This workshop helps critical infrastructure entities assess, benchmark, and strengthen the maturity of the security effect of their Critical Infrastructure Risk Management Program (CIRMP) in line with the Security of Critical Infrastructure Act 2018. Learn how to evaluate your organisation’s protective security capabilities, identify areas for improvement, and demonstrate defensible, evidence-based assurance to Boards and regulators of the effort made to improve protective security performance viewed through the CIRMP.

    Event description

    A mature Critical Infrastructure Risk Management Program does not just exist — it evolves.

    Under the Security of Critical Infrastructure Act 2018 (SOCI Act) and its subordinate Rules, responsible entities must ensure their protective security arrangements are both effective and defensible. This workshop introduces a structured approach to measuring and improving CIRMP maturity, providing Boards and executives with a transparent, evidence-based understanding of how well their organisation’s security controls align with regulatory obligations, and guiding decision-making about future investment in response to evolving threats.

    Drawing on Pentagram Advisory’s tailored CIRMP Security Maturity Assessment and Evaluation Model, this session will guide participants through the principles of assessing current state, identifying gaps, prioritising uplift, and demonstrating compliance through measurable outcomes.

    What you will learn

    • The purpose and value of a security maturity model for CIRMP assessment
    • How to evaluate organisational maturity across key protective security domains
    • How CIRMP maturity levels link to compliance with the SOCI Act and subordinate Rules
    • Approaches for benchmarking, setting improvement goals, and tracking progress
    • How to communicate maturity results effectively to Boards and regulators
    • How to embed continuous improvement and business-as-usual resilience practices

    Key takeaway

    By the end of the session, participants will understand how to assess and determine how best to improve their CIRMP maturity in a structured, repeatable, and transparent way. The framework supports critical infrastructure entities in meeting regulatory expectations, building stakeholder confidence, and driving continuous improvement across governance, assurance, and protective security functions. This approach informs CIRMP-aligned investment planning.

    To register for this event - click here.