Critical infrastructure refers to the systems, assets and networks essential for the economy and public well-being. Disruptions to services like telecommunications, water, energy, transportation or finance can have a severe impact on citizens and the economy, often extending beyond the affected sector. A system-based, all-hazards approach to infrastructure resilience is crucial for maintaining service continuity in the face of various threats. The OECD Recommendations on Infrastructure and Critical Risks emphasise the importance of governance that aims to limit service disruptions and enhance the capacity to recover from shocks.
The OECD Infrastructure Governance Indicator (IGI) assesses key governance elements for enhancing critical infrastructure resilience: multi-sector governance; interdependencies and vulnerabilities; trust and secure information sharing; partnerships for a common resilience vision; policy mix, tools and incentives; accountability and monitoring; and transboundary co-operation. On average, the 23 OECD countries with data available score 0.59 (on a scale from 0 to 1), with individual scores ranging from 0.32 to 0.83 (Figure 10.2). Although countries have made progress in establishing multi-sector governance and addressing cross-border issues, they could still improve their use of policy tools to prioritise cost-effective measures throughout the infrastructure life cycle.
Building resilience requires a whole-of-government systems approach, prioritising the most critical components and addressing the weak points that create critical vulnerabilities for the entire system. Infrastructure assets are usually just a part of a wider system, which should be considered in its entirety in a comprehensive resilience strategy. Most countries have such an instrument in place in some form: 14 out of 23 (61%) have a national policy, strategy or programme; 6 (26%) have a policy established in legislation; and 2 (9%) have a policy enshrined in a wider set of sectoral policies (Figure 10.3).
The types of hazards faced by critical infrastructure are constantly evolving. Climate risks and other natural hazards, digital threats, and security risks can all disrupt services with far-reaching socio-economic consequences. In this dynamic risk landscape, a comprehensive resilience policy must adopt an all-hazards approach to critical infrastructure resilience to ensure more resilient infrastructure. In 18 out of 23 OECD countries (78%), the policy on critical infrastructure resilience addresses all hazards and threats (Figure 10.3).
Strengthening critical infrastructure resilience relies on partnerships and platforms that enable information sharing between governments and infrastructure operators. These collaborations build trust and support ongoing exchanges of knowledge, joint exercises, situational awareness, co-ordinated actions, mutual assistance, and sharing of equipment and emergency supplies. In the OECD, 70% of countries (19 out of 27 with data available) have laws or policies on the sharing of information on the risks and vulnerabilities of critical infrastructure (see Online Figure J.7.2). Information-sharing mechanisms vary and include dedicated government platforms, broader platforms and regular face-to-face meetings.
