Rubrik’s IRAP Assessment

Rubrik has announced the completion of the Infosec Registered Assessors Program (IRAP) Assessment for its Australian sovereign instance of Rubrik Security Cloud.

Developed by the Australian Signals Directorate (ASD), IRAP is an independent assessment of the effectiveness of a system’s security controls. Organisations, particularly Australia’s Federal Government agencies, use IRAP Assessment outcomes to evaluate a system’s suitability for their security requirements.

The completion of the IRAP Assessment to the PROTECTED security classification, adds to Rubrik’s global certifications including Common Criteria EAL, FIPS 140-2, and ISO certifications 27001, 27017, and 27018.

Antoine Le Tard, Vice President, Rubrik APAC said completing the IRAP assessment will allow Rubrik to expand its presence in Australia’s public sector and offer the same data protection capabilities currently deployed by Federal Government agencies around the world.

“We’ve built strong expertise securing the world’s most critical data, including through our work with Commander, Navy Installations Command which manages and sustains all U.S. Naval installations,” Le Tard. “As data grows exponentially, the associated cyber risk increases with it. The borderless nature of cyberattacks means no nation is immune, and completing the IRAP Assessment highlights our commitment to keeping Australia’s data secure.”

As cyber incidents continue to impact some of the world’s largest private and public sector organisations, Le Tard said it was clear perimeter security controls alone – while important – would never be completely fool-proof.

“Ensuring rapid recovery following a breach and minimising downtime is critical as attacks increase in sophistication,” he said. “The Australian Cyber Security Centre recognises this in its Essential Eight Maturity Model with its ‘regular backups’ mitigation strategy. For public sector organisations seeking to improve their cyber resilience, Rubrik’s native controls meet and exceed the requirements for the highest prescribed maturity level.”

About Author

AndyC

Andy Curtis is an award-winning security consultant, researcher and public speaker. He has been working in the computer security industry since the early 1990s, having been employed by state and federal government, leading healthcare and banking providers across three continents. He has given talks about computer security for some of the world’s largest companies, worked with law enforcement agencies on investigations into hacking groups, and is a regular voice on TV and radio explaining IT security threats.

See author's posts