On Jul. 10, 2025, AST CISC, AST GVT, AST DHA reminded responsible entities to submit their CIRMP annual report for 2024-2025 using the responsible entity risk management program - annual report webform, updated on Apr. 8, 2025, #249617.
Responsible entities shall summit their annual reports by Sep. 28, 2025.
Document dated Jul. 10, 2025, received from AST CISC Jul. 16, summarized Jul. 18.
On Nov. 19, AST CISC, GVT, DHA gave feedback on CIRMP reporting.
AST CISC, AST GVT, AST DHA issued feedback on the first mandatory reporting cycle for Critical Infrastructure Risk Management Program (CIRMP), 2023-24 financial year.
Follows AST CISC, GVT, DHA Oct. 2024 updated re critical infrastructure, #231127.
Overview of Feedback
Entities who were required to submit an annual report for the financial year 2023-24 were given a submission deadline of Sep. 28, 2024; and as of Oct. 31, 2024, AST CISC had received 455 annual reports from 8 different sectors covering 831 assets.
Of the 455 annual report submissions, 32 significant impacts were reported; reports from the financial services and markets sector represented less than 1% of the total.
Next Steps
A town hall meeting will be held on Nov. 28, 2024 to provide: a further breakdown of annual report submissions; insights into the nature of the significant impact reports; cyber security frameworks; lessons learned through the annual reporting process.
Lessons learned during the 2023-24 reporting period and audits will be incorporated into updated fact sheets, to enhance compliance through education and awareness.
In Apr. 2025, AST CISC issued suite of factsheets re critical infrastructure, #249617.
Jul. 2025 CIRMP 2024-25
On Jul. 10, 2025, AST CISC, AST GVT, AST DHA reminded responsible entities to submit their CIRMP annual report for 2024-2025 using the responsible entity risk management program - annual report webform, updated on Apr. 8, 2025, #249617.
Responsible entities shall summit their annual reports by Sep. 28, 2025.
Document dated Jul. 10, 2025, received from AST CISC Jul. 16, summarized Jul. 18.
