We’ve compiled a case study that summarises 18 months of very challenging, rewarding and ultimately successful work, guiding the development of an IRAP-compliant information security management practice.
Our client was an international service-provider to governments in Australia and overseas. In order to be able to provide services to the Australian federal government, our client needed to comply with the Australian government’s requirements for protective security and standardised information security practices. These requirements were defined within the Australian government’s IRAP framework.
Our work involved the development of policies, procedures and infrastructure, and we had to engineer organisational change without interruption to the client’s national business-as-usual activities. All the work needed to be completed within an aggressive time frame that was defined by the federal government.