ASD-endorsed IRAP assessor · up to PROTECTED
Practical, evidence-led IRAP assessments — from an assessor who has sat in your seat.
TrustedZone is an Australian cyber security consulting practice. We help government agencies, regulated-industry organisations, and cloud SaaS vendors move from intent to assessed — cleanly, with no theatrics.
What we do
IRAP Assessments
PROTECTED and OFFICIAL: Sensitive. Scoping, SSP/SRMP review, fieldwork, reporting, and re-test.
ISM Advisory
Gap assessment against the current ISM, a remediation plan you can act on, and evidence coaching before formal assessment.
Essential Eight Uplift
Maturity assessment, a pragmatic roadmap to target maturity, and optional implementation support.
Why TrustedZone
Operator experience
Our principal has spent decades as the engineer, architect, and risk owner on the receiving end of security assessments. The assessor's lens is informed by the operator's reality.
Evidence over narrative
We assess what you have, not what you wish you had. Our findings are concrete, our roadmaps are sequenced, and our reports read the way an authorising officer expects them to.
Independent by design
ASD-endorsed. No product upsell, no conflicts. A credible assessment your authorising officer will accept.
Our principal
An ASD-endorsed IRAP Assessor (capability up to PROTECTED) with extensive prior experience as a regional security officer for a sovereign-cloud provider serving federal and state government customers. Holds CISSP, SABSA, and multiple SANS GIAC certifications. Identified to clients under NDA during scoping.
Ready to talk?
Thirty minutes. No obligation. We'll tell you what a realistic engagement looks like for your system.
Book a discovery call