Loading

Consultation on proposed amendments to Ministerial Directions Powers and the Exposure Draft of the enhancements to the Critical Infrastructure Risk Management Program Rules under the SOCI Act

​​​​​​​The Independent Review into the Security of Critical Infrastructure Act 2018 (SOCI Act) was delivered on 31 January 2026 by Dr Jill Slay AM. The review found that the SOCI Act has laid a strong foundation for safeguarding Australia’s most important infrastructure assets. It has significantly strengthened national security and resilience, established a risk-based regulatory framework, and improved partnerships between Government and industry. However, as Dr Slay AM notes, “the threat environment continues to evolve, as infrastructure systems become more interconnected and complex, and as new sectors and technologies emerge as nationally significant, the framework will require continuous refinement”.

The Independent Review’s recommendations are principally directed at reducing complexity and improving the agility and responsiveness of the SOCI Act, including through pursuing legislative reforms. In line with these recommendations, the Department of Home Affairs (the department) is progressing the first tranche of initiatives, including:

  • proposed amendments to Ministerial Directions Powers in Part 3 of the SOCI Act 
  • Exposure Draft of the enhancements of the Critical Infrastructure Risk Management Program Rules

The department ran concurrent consultation processes for both initiatives until 1 May 2026, noting that initial consultation had already been undertaken on enhancements to the CIRMP Rules.

Consultation on proposed amendments to Ministerial Directions Powers in Part 3 of the Security of Critical Infrastructure Act 2018

The department sought industry views on a potential package of five targeted measures to enhance the Ministerial Directions Powers under Part 3 of the SOCI Act. These measures aim to provide greater flexibility and precision in managing serious national security risks to critical infrastructure, while maintaining clear safeguards and accountability. They also respond to previous feedback from industry, including through submissions received on both Developing Horizon 2 of the 2023–2030 Australian Cyber Security Strategy and the Independent Review of the SOCI Act, calling for greater clarity on how and when a direction may be used, and what procedural safeguards will apply.

The proposed amendments are outlined within the Consultation Paper: Proposed amendments to the Ministerial Directions Powers in Part 3 of the SOCI Act.

Town Halls to support Directions Powers in Part 3 of the Security of Critical Infrastructure Act 2018 (SOCI Act)

During the consultation period, the department hosted 2 public virtual town halls on 7 April and 20 April 2026, to support the consultation. These sessions provided information on the Consultation paper, the proposed enhancements to the Directions Powers in Part 3 of the SOCI Act. The sessions were an opportunity to address questions on the proposal.

We recorded these town halls, and they can be accessed through Town halls and awareness sessions.

Trusted Information Sharing Network (TISN) members can find more updates and events on the TISN.

​More in​formation

For more information on the proposed changes to Ministerial Directions Powers please email CI.REFORMS@homeaffairs.gov.au.

Submissions to the proposed amendments to Ministerial Directions Powers in Part 3 of the SOCI Act

The proposed amendments to the Ministerial Directions Powers consultation paper was released on 25 March 2026 seeking submissions by 1 May 2026. The department received 50 submissions in response to the consultation. Confidential submissions have not been published.

For more information on the consultation process, stakeholder feedback and how feedback has informed the department’s response, read the Consultation and Feedback Summary​.

Public Submissions to the Consultation Paper

Exposure Draft of the proposed enhancements to the Critical Infrastructure Risk Management Program Rules (CIRMP Rules)

The Security of Critical Infrastructure Legislation Amendment (Enhanced Critical Infrastructure Risk Management Program) Rules 2026 are now in effect.​​

The department sought industry views on legislative amendments to the Security of Critical Infrastructure (Critical infrastructure risk management program) Rules (LIN 23/006) 2023 (CIRMP Rules) for specific asset classes.

The department previously consulted on the Enhanced CIRMP Rules Consultation Paper from 9 December 2025 to 13 February 2026 (see Consultation Paper-Proposed amendments to enhance the Critical Infrastructure Risk Management Program)). Over 60 submissions were received. The feedback was considered and reflected in the Exposure Draft of the CIRMP Rules.

Amendments are proposed to apply to the following asset classes:

  • critical energy market operator assets
  • critical electricity assets
  • critical gas assets
  • critical liquid fuel assets
  • critical water assets
  • critical broadcasting assets
  • critical domain name systems
  • critical freight service assets
  • critical freight infrastructure assets

See​ Exposure Draft Security of Critical Infrastructure Legislation Amendment (Enhanced Critical Infrastructure Risk Management Program) Rules 2026.

The above link consists of:

  • a covering summary providing insight on previous consultation and guidance on how to provide a submission
  • a copy of the Exposure Draft at Attachment A
  • a summary of stakeholder feedback from the consultation paper at Attachment B.

Town hall to support the Exposure Draft of the Critical Infrastructure Risk Management Program Rules (CIRMP Rules)

During the consultation period, the department hosted a virtual town hall on 8 April 2026 to support consultation. This session provided a summary of consultation feedback received during the first consultation period and how it informed the Exposure Draft of the Rules and provided an opportunity to answer any questions.

We recorded this town hall, and you can access it through the Town halls and awareness sessions.

Trusted Information Sharing Network (TISN) members can find more updates and events on the TISN.

​More information on the Exposure Draft of the CIRMP Rules

For more information on amendments to the CIRMP Rules contact ci.strategy.guidance@homeaffairs.gov.au.

Submissions to the Exposure Draft of the Critical Infrastructure Risk Management Program Rules

The Exposure Draft of the Critical Infrastructure Risk Management Program Rules was released on 25 March 2026 seeking submissions by 1 May 2026. The department received 27 submissions in response to the consultation. Confidential submissions have not been published.

​For more information, see a s​​ummary of the submissions to the Exposure Draft of the Critical Infrastructure Risk Management Program Rules​.​

Public Submissions to the Consultation Paper










pop-up content starts
pop-up content ends