Modern society is increasingly dependent on the stability of a complex system of interdependent infrastructure sectors. Vulnerability in critical infrastructures (CIs) is defined as a measure of system susceptibility to threat scenarios. Quantifying vulnerability in CIs has not been adequately addressed in the literature. This paper presents ongoing research on how the authors model CIs as network-based models and propose a set of metrics to quantify vulnerability in CI systems. The size and complexity of the CIs make this a challenging task. These metrics could be used for planning and efficient decision-making during extreme events.