IRAP Assessment

The Information Security Registered Assessors Program (IRAP) is  an initiative by the Australian Signals Directorate (ASD) to provide  high-quality, independent ICT security assessments. IRAP ensures that Australian government entities and businesses can access professional  evaluations to enhance their cybersecurity posture. These assessments  are conducted by ASD-endorsed assessors with extensive experience in the  Information Security Manual (ISM) and the Protective Security Policy Framework (PSPF).

IRAP assessments guide organisations in understanding their security strengths, identifying vulnerabilities, and receiving tailored recommendations for mitigation. This process is essential for meeting government requirements, enhancing the security of systems and data, and supporting an organisation's risk management strategies.

CBMD's team of IRAP Assessors are not only ASD-endorsed but  also bring a unique veteran background that ensures discipline,  precision, and a deep understanding of secure practices. Our assessors have a proven track record of supporting various sectors, including  Defence, federal agencies, and critical infrastructure providers. We collaborate closely with your team to assess your system and identify any security gaps effectively. 

Our services include comprehensive evaluations of ICT systems,  cloud services, gateways, and specialised standalone systems, ensuring  that security controls are both implemented and functioning as intended. Our approach prioritises clear communication, thorough reporting, and  actionable recommendations to facilitate continuous improvement. 

• Independent Assurance: Trusted assessments that provide unbiased insights into your security framework.
• Detailed Risk Analysis: Identification of potential vulnerabilities and recommendations for remediation.
• Compliance Verification: Confirm your adherence to ISM and PSPF requirements, aiding in meeting government contract prerequisites.
• Informed Decision-Making: Detailed reports that empower stakeholders to make risk-based decisions confidently.