Orca Security Achieves IRAP Assessment at PROTECTED Level, Bolstering Cloud Security for Australian Public Sector

PORTLAND, Ore.--(BUSINESS WIRE)--Orca Security, the pioneer of agentless cloud security, today announced the successful completion of the Australian Information Security Registered Assessors Program (IRAP) assessment at the PROTECTED classification level for its Orca Cloud Security Platform. This achievement, following a recent FedRAMP authorization in the United States, reinforces Orca’s commitment to meeting rigorous security standards required for public sector systems worldwide.

IRAP, an initiative of the Australian Signals Directorate (ASD), ensures that technology providers handling sensitive government data adopt a risk-based approach and comply with the security requirements set forth by the Australian Government Information Security Manual (ISM). These independent assessments evaluate the implementation, appropriateness, and effectiveness of a system’s security controls. The findings are documented in a Security Assessment Report (IRAP report), which enables consumers to assess a system’s suitability for their security needs and risk appetite.

Orca completed the IRAP assessment with Tesserent, an approved IRAP assessor and auditing partner, that is now a part of Thales Cybersecurity Services ANZ.

“This accreditation affirms our platform’s capability to safeguard Australia's most sensitive cloud environments," said Avi Shua, Chief Innovation Officer and Co-founder of Orca Security. "The accomplishment also underscores our commitment to protecting critical government data in Australia, and broader mission to support public sector organizations globally with cloud security excellence—fortifying critical infrastructure and safeguarding national interests against emerging cyber threats.”

The 2023-2030 Australian Cyber Security Strategy outlines plans to build national cyber resilience in response to rising cybercrime. Part of this initiative is to ensure trust in digital products and software, protect the most valuable datasets, and safely adopt emerging technologies. Recently, the Australian government deepened its relationship with AWS to expand cloud access to all levels of government.

Orca empowers Australian government agencies with a comprehensive, agentless-first approach to cloud security. Leveraging its patented SideScanning™ technology, the Orca Cloud Platform delivers rapid asset inventory and risk assessment across AWS, Azure, Google Cloud, Oracle Cloud, Alibaba Cloud, and Kubernetes within minutes of deployment. Its Unified Data Model further performs contextual analysis of the entire cloud environment, including misconfigurations, vulnerabilities, malware, lateral movement, data and API exposures, AI risks, and active breaches—uncovering potential attack paths and prioritizing threats that pose the greatest danger to mission-critical data and security objectives.

Orca’s expanding presence in Australia continues to drive more than 100% year-over-year growth across both government and enterprise sectors. For more information on how the IRAP assessment further solidifies its position as a trusted partner for cloud security in the region, read the blog.

About Orca Security

Orca enables organizations to make cloud security a strategic advantage. With the most comprehensive coverage and visibility across multi-cloud environments, the agentless-first Orca Platform unites teams to eliminate complexities, vulnerabilities and risks. Backed by Temasek, CapitalG, ICONIQ Capital, Redpoint Ventures and others, Orca is trusted by hundreds of organizations, including SAP, Gannett, Autodesk, Unity, Lemonade and Digital Turbine. Connect your first account in minutes: https://orca.security or book a personalized demo.