Keeping your data safe:
The importance of
In recent years, cyber security has gone from being a specialised field of IT operations to a major preoccupation of senior executives in all kinds of organisations. One reason is that, under Australian company and privacy legislation, executives and boards can now be held responsible for data and financial losses due to insufficient security measures. Another is that, as we digitally transform our operations and move infrastructure to the cloud, we feel more vulnerable to cyberattack.
Further, the risks and costs are now proven; highly publicised data breaches and denial of service attacks have crippled global organisations, causing irreparable financial harm and long-lasting brand damage. It has recently been acknowledged by our Prime Minister, Scott Morrison, that state-sponsored attacks have been mounted not only on our economy, but on our research and political institutions as a kind of cyber warfare. To combat this threat, Morrison’s committed $1.664bn of federal spending over the next decade.
In such an environment, TechnologyOne is proud to have leapt another significant security hurdle – becoming the first enterprise software provider to earn assessment under the Australian Government’s Information Security Registered Assessors Program (IRAP) for PROTECTED classified data.
What is IRAP?
IRAP is operated by the Australian Cyber Security Centre and assesses products in terms of their use under government information security ratings. Our ERP SaaS platform was previously rated as ‘OFFICIAL: Sensitive’ – but achieving IRAP assessment for PROTECTED classified data is of great value to our Federal Government customers, as we can now store and process any classification of data up to and including PROTECTED. As the former head of the ACSC, Alastair MacGibbon has noted, this upgrade comes at a critical time for the nation.
“The more protected systems across government, the better. In security, you’re only as strong as the weakest link,” he said. “Smaller government agencies are exposed to the same risk and threats as their larger counterparts, but often have fewer resources to mitigate them. I applaud any company, particularly a sovereign Australian one, that is looking to raise security by design and default.”
Unless your organisation is a Federal Government agency, there is actually no need for your suppliers to undergo IRAP assessment. But TechnologyOne having done so across our entire platform – including the 14 products operating on it – assures you of our commitment to cyber security. We’ve set about to raise the bar for all our customers – at no extra cost to you.
Ready to learn more?
If you would like to know more about our investment in and commitment to SaaS security, visit our Security & Trust page or talk to your TechnologyOne Account Manager.