Commonwealth Consolidated Acts Commonwealth Consolidated ActsIf:
(a) an entity is the responsible entity for one or more critical infrastructure assets; and
(b) the entity has adopted a critical infrastructure risk management program that applies to the entity;
the entity must review the program on a regular basis.
Civil penalty: 200 penalty units.