Compliance & Assurance
IRAP pathway · ASD Essential Eight alignment · ISO/IEC mapping · Onshore data and explainability.
IRAP Pathway
In progress towards PROTECTED assessment. Controls implemented per ISM 2025 baseline. Audit artifacts available under NDA.
ASD Essential Eight
Mitigation strategies monitored quarterly. Application whitelisting and patch management scored Level 2 maturity (Australia East tenant).
ISO/IEC 27001 Mapping
Controls cross-mapped to Annex A 2022. Statement of Applicability available for review (Q1 2026 target certification).
Data Residency & Privacy
All inference and storage reside in Australia East. Encryption at rest (AES-256) and in transit (TLS 1.3). No cross-region replication.
Explainability Framework
Every decision can return citations, rationale, and confidence scores via policy-bound LLM prompts (AUDIT mode).
Penetration Testing / OWASP
Quarterly OWASP Top 10 scan and external red team planned for H1 2026 as part of investor trust stack.