Mandatory Cyber Incident Reporting
Initial guidance for Critical Infrastructure Sectors
if you are a cyber security team member in any role working for any of the 13 critical infrastructure sectors under the SOCI Act Obligation, you must familiarise yourself with the requirements of the SOCI Act. There is a broader organisational, national and community benefit as well as purpose to the regulation and knowing your role in making meaningful contribution to this purpose will take you a long way in your career.
One of the SOCI Act obligations in Mandatory Cyber Incident Reporting within 12 hours of becoming aware of a critical cyber incident (there are provisions, see PDF). For your awareness, you may enquire with your Security Operations team of the process flow for incident reporting related to SOCI. There should be a specific role or individual responsible for picking up the phone and calling the number in the infographic below. As an exercise, you can find out who that person is in your organization. To your surprise the person or role, may not be a part of the cyber security team, varies from organisation to organisation.
You can also bookmark this direct linkĀ – https://www.cisc.gov.au/resources-contact-information-subsite/Documents/mcir-guidance.pdf