Establishing a Critical Worker Identification and Risk Management Framework

Update: 2025-10-16

Description

Across Australia’s critical infrastructure sectors, one of the most persistent challenges under the Security of Critical Infrastructure Act 2018 is identifying and managing critical workers — those individuals whose absence, compromise, or misconduct could disrupt essential services.

In this episode, Pentagram Advisory introduces the Seven-Step Critical Worker Identification and Risk Management Framework — a practical, regulator-aligned approach that helps organisations move from compliance to confidence.

Tim and Marina unpack the legislative foundations, share insights from industry engagements, and outline how clear governance, operational mapping, and proportionate assurance measures can transform workforce compliance into lasting capability and assurance.

Whether you are a security or risk professional, HR leader, or executive responsible for essential services, this episode will help you strengthen your organisation’s resilience and meet the intent of the SOCI framework with clarity and purpose.

🔗 For more insights, visit Pentagram Advisory or follow us on LinkedIn.

Comments

In Channel

In the National Interest: China’s Cognitive Warfare

2025-10-2029:01

Establishing a Critical Worker Identification and Risk Management Framework

2025-10-1616:43

When Trust Breaks, Free Will Decides: How the Psychological Contract Shapes Insider Threat and Cyber Security Compliance

2025-09-2212:07

Countering Foreign Interference: Insider Threat Programs For Australia’s Critical Infrastructure

2025-09-0911:55

ESG and the Human Factor: Why personnel security must be a core feature of ESG strategy

2025-09-0613:57

Foreign Interference - Iran in Australia

2025-09-0319:24

Foreign Interference: China interfering in Australia, and in your workplace

2025-08-2918:57

Clorox - Cognizant: Insider Threat in the Supply Chain

2025-08-2109:32

Critical Infrastructure Risk Management Program Turns Two: How to Strengthen the Annual Review, Board Engagement, and Enterprise Risk Integration

2025-08-1415:06

Returning to the Office: Managing Insider Threats During Organisational Transition

2025-08-0714:33

Building a Trusted Workforce – Managing Human Risk with Purpose

2025-07-2011:27

Maturity Model for the Critical Infrastructure Risk Management Program

2025-07-1011:03

Pentagram First Anniversary - Celebrating a Year of Collaboration

2025-06-2311:55

In the National Interest – Transport Workers Union Militancy and Insider Threat

2025-06-1030:09

Australian Government Recognises the Need for Insider Threat Programs

2025-06-0214:09

Modernising Australia’s Transport Security: Meeting the Threats of Tomorrow

2025-05-2712:16

Insider Threat at Canberra Hospital: a Case Study in Critical Infrastructure Security in the Health Sector

2025-05-2206:12

Board responsibilities for approving the risk management program annual report under the Security of Critical Infrastructure Act 2018: What directors need to know

2025-05-1213:25

In the National Interest - Critical Infrastructure as a National Security Priority

2025-05-0449:32

Observing the absence of usual or the presence of unusual: a new lens on insider threat reporting

2025-04-2412:17