Commonwealth Consolidated Regulations Commonwealth Consolidated RegulationsIn addition to the matters required under regulation 3.05 , a security assessment for the operation of a port service provider must include the following matters:
(a) a statement outlining the risk context or threat situation for the port service provider;
(b) identification and evaluation of important assets, infrastructure and operations that need to be protected;
(c) identification of possible risks or threats to assets, infrastructure and operations, and the likelihood and consequences of their occurrence;
(d) identification of existing security measures, procedures and operations;
(e) identification of weaknesses (including human factors) in the infrastructure, policies and procedures;
(f) identification, selection and prioritisation of possible risk treatments (for example, counter‑measures and procedural changes that need to be implemented) and their effectiveness in reducing risk levels and vulnerabilities.