IRAP Readiness Checklist | Free Comprehensive Guide

Free IRAP Assessment Checklist

A practical, step‑by‑step checklist aligned to the Australian Government Information Security Manual (ISM). Built for enterprises and legal firms supplying services to government.

Complete ISM Control Coverage
Self-Assessment Framework
12-Week Preparation Timeline
Evidence Collection Strategies
Why this matters
IRAP Readiness Checklist
Fill in your details and we’ll send the IRAP Readiness Checklist straight to your inbox.
Name
Please enter a valid business email address to receive the checklist.
Where are you in your IRAP journey?

Why this matters

  • Designed for organisations aiming to supply services to Australian Government
  • Covers mandatory ISM documentation, risk management, incident response, and monitoring
  • Highlights common readiness gaps that delay or increase assessment costs
  • Includes a self-assessment scoring tool (1–25 scale) to benchmark readiness

Foundational Requirements

System scope definition, stakeholder readiness, and executive alignment strategies

Mandatory Documentation

Complete templates for SSP, SRMP, IRP, CMP and POAM with assessor expectations

ISM Control Implementation

Governance, personnel security, physical security, network security and cryptography

Evidence Collection

Technical, process and governance evidence with practical examples

Self Assessment Tool

Rate your readiness across 5 key areas and get actionable recommendations

Common Pitfalls

Learn from others' mistakes with documented readiness gaps and solutions

Our Services

Virtual CISO Retainer Service

Security Program Improvement

Data Security and Privacy

Governance Risk and Compliance

Digital Forensics

Incident Response

Cyber Crisis Management

Incident Response Retainer

Penetration Testing

Vulnerability Management

Security Awareness Training

Recent Posts

Welcome to the “Cybersecurity Loop” Edition #17

118 Australian Businesses Hit by Ransomware in 2025 | What Leaders Must Know

Australian Clinical Labs Case: Lessons in Cyber Response & Communication

Beyond the Gateway: Why Traditional Email Security Can’t Stop BEC Attacks Targeting M&A Deals and Trust Accounts

The Hidden Battlefield: Why Traditional EDR Leaves Your Identity Layer Exposed

Lvl 17, Angel Place,

123 Pitt Street,

Sydney

NSW 2000

 (02) 7230 1350