⚙️Live webinar: AI governance in controlled environments: The next compliance challenge. Register now
MarketplaceCritical InfrastructureSOCIA 2018
Critical InfrastructureLaw

SOCIA 2018

Security of Critical Infrastructure Act 2018

The Security of Critical Infrastructure Act 2018 (SOCIA) establishes a regulatory framework for managing national security risks to Australia’s critical infrastructure sectors. It introduces statutory obligations, reporting requirements, and oversight mechanisms for critical assets.

Book your strategy callView source ↗

Overview

The Security of Critical Infrastructure Act 2018 (SOCIA), administered by the Australian Department of Home Affairs, is designed to safeguard critical infrastructure in Australia from national security risks. The Act mandates the creation and maintenance of a Register of Critical Infrastructure Assets, obligatory risk management programs for responsible entities, and notification of cyber security incidents. Key sectors covered include energy, telecommunications, data storage, financial services, and transportation. Enhanced powers are granted to ministers for issuing directives in response to serious incidents, ensuring heightened security standards for telecommunications assets, and mandating code exercises and vulnerability assessments. It also introduces robust penalty mechanisms for non-compliance and unauthorized disclosures.

Related in Critical Infrastructure

Critical InfrastructureLaw

Clean Energy Act 2011

The Clean Energy Act 2011 establishes the framework for implementing a carbon pricing mechanism in Australia. It includes provisions for covered entities, emission obligations, and limits on emissions units.

Parliament of Australia • Australia

View details
Critical InfrastructureRegulation

EU Regulation 2022/1645 — Commission Delegated Regulation (EU) 2022/1645

EU Regulation 2022/1645 establishes mandatory cybersecurity management requirements for Part 21 Design Organisations (DOs) and Production Organisations (POs) in the aviation sector. It introduces the implementation of an Information Security Management System (ISMS) to protect critical systems, data, and processes from cyber threats.

European Commission • European Union

View details
Critical InfrastructureLaw

Renewable Energy (Electricity) Act 2000

The Renewable Energy (Electricity) Act 2000 establishes a legal framework to encourage the generation of electricity from renewable energy sources in Australia. It creates a system for renewable energy certificates and mandates a Renewable Power Percentage to ensure participation by electricity retailers.

Australian Government • Australia

View details
Critical InfrastructureLaw

Ozone Protection and Synthetic Greenhouse Gas Management Act 1989

The Ozone Protection and Synthetic Greenhouse Gas Management Act 1989 is Australian legislation designed to manage the use, import, and export of ozone-depleting substances (ODS) and synthetic greenhouse gases (SGGs). It aligns with Australia's obligations under the Montreal Protocol, emphasizing environmental protection through licensing, quotas, and controls on substances and equipment.

Australian Government • Australia • v7, 1989

View details

Ready to manage these frameworks?

6clicks maps regulations to controls, evidence and risks — automatically.

Book your strategy call