The Infosec Registered Assessors Program (IRAP) is an Australian Signals Directorate (ASD) program administered by the Australian Cyber Security Centre (ACSC) to help government agencies verify that appropriate controls are in place for addressing information and communications technology (ICT) security requirements. The IRAP framework is based on the requirements of the Australian Government Information Security Manual (ISM) and provides a process by which a technology provider can demonstrate its compliance with the ISM.
IRAP assessments are required for cloud services procured by Australian federal, state, and local government agencies. As part of the updated IRAP Policy (2020), Cloud Service Providers (CSPs) are required to complete a baseline assessment using an independent third-party certified assessor that covers the CSP fundamentals and service-specific controls.
IBM Cloud infrastructure services maintains an IRAP PROTECTED level assessment that Australian Government clients can leverage to establish a highly secure and compliant environment within IBM Cloud. The IBM Cloud infrastructure PROTECTED assessment included Security Construction and Equipment Committee (SCEC) Zone 3-certified data centers with video surveillance.
The Australian Taxation Office certified IBM Cloud infrastructure services for the processing, storing, and transmitting of Australian Government information classified up to, and including, PROTECTED for the IaaS services detailed within the IRAP assessment scope.
Australian Government clients may request the IBM Cloud Infrastructure IRAP PROTECTED Assessment and Certification Package.
For more information, contact your IBM representative.
Services
- IBM Cloud Backup
- IBM Cloud Bare Metal
- IBM Cloud Block Storage
- IBM Cloud Direct Link (on Classic "1.0"; Connect, Dedicated, Dedicated Hosting, Exchange)
- IBM Cloud File Storage
- IBM Cloud Hardware Security Module
- IBM Cloud Load Balancer
- IBM Cloud Object Storage (IaaS)
- IBM Cloud Virtual Servers
- IPSec VPN
- SAP-Certified Cloud Infrastructure
- IBM Cloud App ID
- IBM Block Storage for Virtual Private Cloud
- IBM Block Storage Snapshots for VPC
- IBM Backup for VPC
- IBM Cloud Code Engine
- IBM Cloud Container Registry
- IBM Cloud Direct Link Connect (2.0)
- IBM Cloud Direct Link Dedicated (2.0)
- IBM Cloud DNS Services
- IBM Cloud Flow Logs for VPC
- IBM Cloud Kubernetes Service
- Red Hat® OpenShift® on IBM Cloud
- IBM Cloud Object Storage
- IBM Cloud Satellite
- IBM Cloud Schematics
- IBM Cloud Transit Gateway
- IBM Cloud Virtual Private Cloud
- IBM Cloud Virtual Private Cloud - Load Balancer for VPC: Application Load Balancer
- IBM Cloud Virtual Private Cloud - Load Balancer for VPC: Network Load Balancer
- IBM Cloud Virtual Private - VPN for VPC Site-to-Site Gateway
- IBM Cloud Virtual Server for VPC - Auto Scale for VPC
- IBM Cloud Virtual Server for VPC - Dedicated Host for VPC
- IBM Cloud Virtual Private Endpoint for VPC
- IBM Event Streams for IBM Cloud (Enterprise)