Critical infrastructure protection
Critical infrastructure is broadly defined as the infrastructure that delivers the critical services upon which our society depends. For example, turning on a tap and flicking on a light switch both rely on the operation of key infrastructure.
A nationally agreed definition of critical infrastructure is provided in the National Guidelines for Protecting Critical Infrastructure from Terrorism:
those physical facilities, supply chains, information technologies and communication networks which, if destroyed, degraded or rendered unavailable for an extended period, would significantly impact on the social or economic wellbeing of the nation, or affect Australia’s ability to conduct national defence and ensure national security
Some of these assets are obvious (e.g. electricity, water) and others are less so. In light of the potential consequences that can arise from the disruption of critical infrastructure, the New South Wales (NSW) Government is committed to their protection.
The Critical Infrastructure Protection Program within NSW is delivered jointly by the NSW Department of Premier and Cabinet and the NSW Police Force. They work closely with other NSW agencies, the NSW State Emergency Management Committee and most importantly with the owners and operators of critical infrastructure themselves.
Within NSW, critical infrastructure is both publicly and privately owned and managed. Approximately 76% being publicly owned and 24% privately owned. The owners and operators of critical infrastructure are key to ensuring the security of their assets. Many accept that ensuring security of their assets is a cost of doing business.
Identifying critical infrastructure within NSW is an ongoing process, and is subject to continuous review. Major components of critical infrastructure will most likely remain fixed, while some other assets may become less critical over time. For example when a new piece of infrastructure is constructed this might provide a level of redundancy for another asset that was previously considered critical.
Although every effort is made to protect critical infrastructure and the community generally from acts of terrorism, no guarantees can ever be made that an attack will not occur. Good business practices such as applying risk management techniques to planning processes, conducting regular reviews of risk assessments and plans, as well as developing and reviewing business continuity plans, will assist businesses in mitigating potential risks.
NSW Critical Infrastructure Protection Management Framework
To ensure consistency between Australian, State and Territory governments and industry, the Commonwealth published the National Guidelines for Protecting Critical Infrastructure from Terrorism. The guidelines articulate agreed responsibilities for the States and Territories and industry. These National Guidelines have been applied to the NSW context in the NSW Critical Infrastructure Protection Management Framework (see attached related resources).