In this workshop, we explore the practical connection between supply chain assurance and organisational resilience for critical infrastructure entities. The session focuses on how organisations can move beyond compliance-driven activities to adopt a risk-based, proportionate approach to understanding and managing critical supply chain dependencies — and how this directly supports resilience, business continuity, and defensible decision-making.

You will hear from our special guest speaker Colin Muller, Resilience Specialist at Adelaide Airport, who shares practical insights on organisational resilience and business continuity, drawing on real-life case studies.

In this interactive workshop, we explore insider threat through the lens of four well-known Harry Potter storylines, each reimagined to reflect real-world protective security challenges faced by critical infrastructure entities. Using short film extracts and practical insider-threat scenarios, we translate magical mishaps into clear lessons on identifying behavioural indicators, recognising manipulation and coercion, strengthening organisational controls, and building resilient insider threat programs.

Disclaimer: This workshop includes short video extracts from the Harry Potter films used solely for educational purposes under the fair-dealing provisions of the Copyright Act 1968 (Cth). Pentagram Advisory does not claim ownership of any Harry Potter content. All rights remain with Warner Bros. Entertainment Inc.

In this workshop, we provide an overview of Pentagram’s seven-step Critical Worker Identification and Risk Management Framework, designed specifically for critical infrastructure entities to support the structured identification and management of critical workers and to ensure compliance with the Security of Critical Infrastructure Act 2018 and its subordinate Rules.

In this workshop, we provide an overview of Pentagram’s CIRMP Maturity Assessment and Evaluation Model, developed specifically for critical infrastructure entities. The model helps organisations assess, evidence, and strengthen the implementation of their CIRMP – and, in turn, enhance enterprise security.

You will hear directly from our special guest speaker, Mark McConnon, Head of Risk and Resilience at TasWater. Mark shares TasWater’s experience applying the model in practice, including how it not only shifted their mindset from “it won’t happen to us to “it will happen to us unless we change” but also set them on a clearer path to embedding a security culture alongside their safety culture.

In this workshop, we take a focused look at the threat of foreign interference and what it means for entities covered under the Security of Critical Infrastructure Act 2018. With foreign interference recognised as one of Australia’s most pressing national security challenges, we explore how it differs from foreign influence, how it manifests in the context of critical infrastructure, and how trusted insiders can be targeted, coerced, or exploited. We also examine practical approaches for identifying, assessing, and responding to insider threat activity, equipping boards and directors with the assurance they require to protect critical assets and operations.

You will hear directly from the Counter Foreign Interference Coordination Centre, Department of Home Affairs, who will share insights on emerging risks, effective board engagement, and real-world examples from recent practice. Watch a short excerpt from the workshop, or register below to view the full event.

In this workshop, we take a focused look at the second anniversary of the Critical Infrastructure Risk Management Program (CIRMP) and what it means for entities covered under the Security of Critical Infrastructure Act 2018. With the next annual reporting cycle fast approaching, we explore how to conduct a robust CIRMP review, prepare for reporting, and deliver the assurance that boards and directors require. We also examine practical approaches for assessing and evaluating CIRMP maturity to drive continuous improvement.

You will hear directly from the Critical Infrastructure Security Center, who shares insights on audit readiness, effective board engagement, and real-world examples from recent industry practice. Watch a short excerpt from the workshop, or register below to view the full event.

In this workshop, we take a practical look at strengthening assurance and governance within your Critical Infrastructure Risk Management Program (CIRMP). With the 2025 annual reporting cycle approaching, we explore what boards and officers need to know under the Security of Critical Infrastructure Act 2018 — and how to better align CIRMP with enterprise risk, audit, and assurance processes.

You will hear directly from the Critical Infrastructure Security Compliance Section at Cyber and Infrastructure Security Center, who shares insights on audit readiness, effective board engagement, and real-world examples from recent industry practice. Watch a short excerpt from the workshop, or register below to view the full event.