Site search
Preparing for the post-quantum era of security
Preparing for the post-quantum era of security

Regulatory frameworks and quantum risk

Key regulatory regimes

Financial services and other critical sectors already operate under strict cybersecurity obligations, and regulators are increasingly flagging quantum threats. While current rules do not explicitly mention quantum computing, this will inevitably change. As the technology advances, we expect regulators to require organisations to strengthen their security frameworks and adopt quantum-resistant measures to remain compliant.

Footnotes

  1. Note these CIRMP obligations currently do not apply to responsible entities for banking, insurance, superannuation, critical hospital, education, space, aviation, public transport or port assets. See Guidance for the Critical Infrastructure Risk Management Program, CISC, March 2025.  

  2. ASIC Corporate Plan 2023–27, ASIC.