IRAP compliance for national service provider

We’ve compiled a case study that summarises 18 months of very challenging, rewarding and ultimately successful work, guiding the development of an IRAP-compliant information security management practice. 

Our client was an international service-provider to governments in Australia and overseas. In order to be able to provide services to the Australian federal government, our client needed to comply with the Australian government’s requirements for protective security and standardised information security practices. These requirements were defined within the Australian government’s IRAP framework.

Our work involved the development of policies, procedures and infrastructure, and we had to engineer organisational change without interruption to the client’s national business-as-usual activities. All the work needed to be completed within an aggressive time frame that was defined by the federal government.

We have provided plenty of information about the IRAP program in a previous post so we won’t re-hash it here. Instead, we’ve compiled a case study that summarises 18 months of very challenging, rewarding and ultimately successful work. You can read more about this, and other case studies, on our Case Studies page.

Feel free to contact us if you need some assistance in defining or executing your IRAP program of work.