Security of Critical Infrastructure (SoCI)

Our Approach

Complete Crisis Solutions partners with organisations operating within Australia’s critical infrastructure sectors to deliver practical, compliant and resilient risk management solutions.


With extensive experience across industries impacted by the SOCI Act, we support asset owners and operators to strengthen preparedness, improve operational resilience, and meet evolving regulatory obligations.


Supporting organisations to strengthen resilience, achieve compliance, and manage risk across critical infrastructure sectors.


Why Choose Complete Crisis Solutions?

SOCI Expertise

Supporting critical infrastructure owners and operators nationally.

Proven Track Record

Experience across energy, water, communications, transport and health sectors.

Industry-Specific Solutions

Experience across energy, water, communications, transport and health sectors.

End-to-End Support

From assessments through to implementation, training and exercises.

Industries We Support 

Energy

Water

Communications

Transport

Healthcare

Critical Infrastructure Operators

Government

Utilities

Site Security Risk Assessments

Identify vulnerabilities and strengthen physical security controls.

Crisis Management Exercises

Simulation exercises and response testing.

Critical Worker Programs

Policies, training and personnel security measures.

Business Continuity Planning

Maintain operations during disruption.

Emergency & Disaster Management

Preparedness, response and recovery planning.

Cybersecurity & Incident Response

Reduce cyber risk and improve resilience.

Critical Infrastructure Risk Management Plan (CIRMP)

Develop compliant risk management programs aligned with SOCI requirements.

Critical Worker Security Policy, Plans, and Procedures

Protecting critical workers is essential for ensuring the ongoing operation of critical infrastructure.


We provide:

  • Personnel security risk assessments to safeguard employees from targeted threats.
  • Policies and procedures for background checks, access management, and insider threat mitigation.
  • Training programs to enhance staff awareness of security risks and protocols.


Crisis Management and Emergency Exercises

We enhance organisational preparedness;


We provide:

  • Tabletop and simulation exercises to test response plans against real-world scenarios.
  • Multi-agency coordination drills to ensure alignment with emergency services and regulators.
  • Post-exercise reviews and improvement plans to refine policies and procedures.


Emergency and Disaster Management Plans

We support organisations in emergency preparedness and disaster response planning by developing:


We provide:

  • Emergency response plans tailored to site-specific hazards and operational risks.
  • Evacuation and shelter-in-place procedures to protect personnel and assets.
  • Disaster recovery strategies to restore operations efficiently post-incident.
  • Coordination frameworks for collaboration with government agencies and first responders.


Business Continuity Planning for Critical Infrastructure

We develop comprehensive Business Continuity Plans (BCPs) to ensure operational resilience during disruptions.

We provide:

  • Business impact analysis (BIA) to identify essential functions and dependencies.
  • Contingency planning for supply chain disruptions, cyber incidents, and operational failures.
  • Crisis communication strategies to manage stakeholder expectations and regulatory reporting.
  • BCP exercises and testing to validate preparedness and response effectiveness.


Site Security Risk Assessments, Policy, Plans, and Procedures

We specialise in securing critical infrastructure assets by assessing vulnerabilities and implementing effective security controls.


We provide:

  • Site security risk assessments to identify and mitigate threats to physical infrastructure.
  • Security policies and governance frameworks to align with SOCI Act requirements.
  • Security plans and procedures for operational resilience and incident response.
  • Protective security measures, including access control, surveillance, and perimeter security enhancements.


Cybersecurity Risk Assessments and Incident Response Planning

With cyber threats posing an increasing risk to critical infrastructure;

We provide:

  • Cybersecurity risk assessments aligned with the SOCI Act and industry standards.
  • Cyber incident response plans to detect, respond to, and recover from cyber attacks.
  • Resilience planning to mitigate threats such as ransomware, data breaches, and supply chain cyber risks.
  • Cybersecurity awareness training for employees and stakeholders.


Critical Infrastructure Risk Management Program (CIRMP) Development and Risk Assessments

We assist organisations in developing a robust Critical Infrastructure Risk Management Program (CIRMP), as mandated by the SOCI Act.


Our services include:

  • Conducting comprehensive risk assessments covering all threat vectors (cyber, physical, personnel, supply chain, natural hazards, and operational risks).
  • Developing tailored risk treatment strategies to mitigate vulnerabilities.
  • Ensuring ongoing compliance monitoring and reporting to regulatory authorities.