The software company is set to enhance the federal government’s cyber security posture, after earning the IRAP ‘Protected’ security assessment.
TechnologyOne has become the first enterprise software provider to earn the ‘Protected’ status through the Information Security Registered Assessors Program (IRAP).
As a result, federal government agencies using TechnologyOne’s software as a service (SaaS) platform are set to be upgraded from ‘Official: Sensitive’ status to ‘Protected’.
The firm has claimed the transition would not incur additional cost or disrupt operational activity.
According to the former head of the Australian Cyber Security Centre and CyberCX strategy chief Alastair MacGibbon, the cyber security upgrade comes at a critical time for the nation.
“The more protected systems across government the better. In security, you’re only as strong as the weakest link,” he said.
“Smaller government agencies are exposed to the same risk and threats as their larger counterparts, but often have fewer resources to mitigate them.
“I applaud any company, particularly a sovereign Australian one, that is looking to raise security by design and default.”
Ed Chung, TechnologyOne CEO, said the IRAP assessment would strengthen the government’s defences against mounting cyber threats.
“Our federal government customers will get access to a more secure service at no additional cost to the taxpayer, and we are confident that this is what Australia needs, and expects, of its homegrown technology companies,” the CEO said.
“As an Australian citizen, as well as the CEO of an Australian company, it’s important to me that the data that the federal government holds in trust for us – such as personal financial data – will now be protected with an additional level of security.
“Many agencies operate in both ‘Official’ and ‘Protected’ – often requiring two environments. We are pleased to be able to meet the unique, and specific needs of our federal government customers by removing this friction.”
Chung said TechnologyOne’s IRAP ‘Protected’ status and its pending Defence Industry Security Program (DISP) membership, would provide federal government agencies on the company’s SaaS platform with a “comprehensive cyber security posture”, covering “people, process and technology”.