Security information obligations for telecommunications companies

Telecommunication companies can now have their say to help inform the design of new security information obligations.

The Australian Government is proposing that carriers and eligible carriage service providers be responsible for reporting asset and cyber security incidents, making their obligations similar to those other sectors of the economy will have under the Security of Critical Infrastructure Act 2018.

These changes will provide clarity for the sector and reduce regulatory duplication. They are likely to involve a cost for industry, as well as provide benefits through improved coordination for responses to major cyber security incidents and other disruptive events.

We’re seeking feedback on the:

  • scope and content of two draft legislative instruments
  • estimated cost of complying with the obligations in the draft instruments

View the consultation paper and draft legislative instruments, and to have your say. Comments should be submitted by 29 March 2022.