Why Objective Connect is IRAP assessed and what it means for you.

If you share Sensitive or Protected information externally, you need an IRAP assessed solution to stop information falling into the wrong hands.

While collaborating with external partners helps get things done, it also means losing control and visibility as soon as your information is shared.

Your data. Your responsibility.

In Australian law, data is classified according to the damage it can inflict on individuals, organisations or the national interest if it falls into the wrong hands.

If your data is anonymised or unofficial, a growing range of software options can be considered for file sharing and collaboration. If you work with individually identifiable, sensitive, confidential, privileged or protected data however, the stakes are higher and the rules are tighter.

Identifying a solution.

Research shows over 80% of teams working with these types of information can be guilty of file sharing with open, unauthorised or consumer-grade software when a dedicated solution isn’t provided (1). To identify what software is fit for purpose and what isn't, the Australian Signals Directorate (ASD) operates the Information Security Registered Assessors Program (IRAP).

Being secure. And proving it.

The ASD no longer certifies ICT solutions directly with programmes like the CCSL cloud suppliers list. It now certifies independent IRAP assessors to apply over 800 controls from the Attorney General’s Protective Security Policy Framework (PSPF) and the Australian Cyber Security Centre’s (ACSC) Information Security Manual (ISM). The result is a definitive view on which solutions are fit for purpose when it comes to Sensitive and protected data, and which aren't.

When it comes to working with all levels of government, national critical infrastructure, regulated industries and the organisations they work with, IRAP isn't aspirational, it's the price of entry.

“IRAP is the perfect showcase for our security posture”, establishes Objective Connect's Jonathan Mills, ‘because security isn’t something you claim, it’s something you prove.

About Objective Connect.

Extend your internal information governance externally. Maintain control over shared documents. Collaborate across devices, across teams or across the world. Maintain one version of the truth. Record who did what and when. All from one solution.

Because IRAP assessment includes both ‘should-do’ and ‘must-do’ controls, it’s important to note that not all assessment results are equal. Download your extract from ours today. 

We wanted something that would integrate into [Content Manager] HP TRIM, gave us the full audit trails and was IRAP assessed. Objective Connect was the only product that hit all of those marks

Peter O'Halloran

Executive Director and CIO, National Blood Authority

There's no such thing as almost secure.

“There’s no papering over the cracks with cyber-security”, emphasises Jonathan Mills. “Being IRAP assessed for Protected data means a solution must provide defence-in-depth.’ Objective Connect protects your data with:

  • Automatic EDRMS integration with Content Manager (TRIM) or Objective ECM
  • Sovereign Australian hosting, support and engineering
  • Vetted staff, physical, virtual and procedural security
  • IRAP assessed, ISM, ISO and SOC-2 certified AWS solutions
  • Embedded Anti-Virus (AV) and AES-256; 512, FIPS 140-2 and SSL/TLS encryption, along with
  • 2-step verification to ensure your access permissions are always current

Chosen by those who know.

It’s little surprise then that millions of users employ Objective Connect for secure external file sharing and collaboration including local, state and federal government, defence bodies and whole-of-government agreements. To learn more about our security posture and what it means to you, talk to the Objective Team today at connect@objective.com.

  1. McAfee Report by STratecast (a unit of Frost & Sullivan)