#### 30CA Simplified outline of this Part • This Part sets out enhanced cyber security obligations that relate to systems of national significance. • The responsible entity for a system of national significance may be subject to statutory incident response planning obligations. • The responsible entity for a system of national significance may be required to undertake a cyber security exercise. • The responsible entity for a system of national significance may be required to undertake a vulnerability assessment. • If a computer is a system of national significance, or is needed to operate a system of national significance, a relevant entity for the system may be required to: (a) give ASD periodic reports of system information; or (b) give ASD event‑based reports of system information; or (c) install software that transmits system information to ASD. > Note: For a declaration of a system of national significance, see section 52B.

Previous sectionPart 2CEnhanced cyber security obligations Next sectionSubdivision AApplication of statutory incident response planning obligations

Section 30CA - Security of Critical Infrastructure Act 2018 - Simplified outline of this Part — Zoe