Summary
This document is a guide detailing the IRAP Assessment Services provided by Trustwave, which are performed by ASD-endorsed assessors. The Information Security Registered Assessors Program (IRAP) is administered by the Australian Signals Directorate (ASD) and endorses individuals to assess ICT systems against the Information Security Manual (ISM) and the Protective Security Policy Framework (PSPF). The document outlines the typical stages of the IRAP assessment process, including scoping and planning, security control assessment, and reporting. It also describes various service offerings such as IRAP readiness reviews, cloud services assessments, and risk mitigation advisory. Additionally, the guide emphasizes the benefits of independent security evaluations and actionable recommendations for aligning security posture with Australian Government frameworks. Deliverables after an assessment include a Security Assessment Report and supporting documentation, clarifying that IRAP assessments do not result in certification or accreditation by ASD.
