Nexon News

IRAP Assessment underway for Nexon Asia Pacific

Nexon Asia Pacific /

Further to our ISO:27001 certification, and as part of an ongoing commitment to building and maintaining secure infrastructure for our cloud-based solutions, Nexon Asia Pacific is currently undergoing an Information Security Registered Assessors Program (IRAP) Assessment.

By seeking IRAP Assessment, we’re recognising the importance of delivering secure services and seeking to provide customers with assurance that their data is protected, both now and in the future.

Our aim is to enable all customers, including government agencies, continued assurance and confidence about the higher level of data security available from Nexon’s systems, services and solutions.

Undergoing IRAP Assessment illustrates our continuous commitment to delivering and maintaining cloud services infrastructure and security standards. Standards that not only meet Australian federal government agency requirements but also provide the necessary assurance to commercial customers as well.

IRAP, an Australian Signals Directorate (ASD) and Australian Cyber Security Centre (ACSC) initiative, provides high-quality information and communications technology (ICT) security assessment services to government. It provides a set of guidelines and assurance requirements around how companies manage, maintain and share data, along with ensuring tighter security controls in processes and infrastructure.

The independent IRAP assessment is a two-stage process to assess the implementation, effectiveness and appropriateness of the system’s security controls. We have commenced the assessment under the direction of our Compliance Manager. The Stage 1 Security Assessment will involve reviewing the system architecture and the collection of system security documentation, including the company’s security policy, risk assessments and response plans.

As a result, customers can confidently focus on their core business knowing their data and services are secure and their IT risks reduced.  Our preventative action against threats includes controlling the physical security of the server boxes, connectivity and devices, and digital maintenance of software options, security patches and version control. This ensures an overall safe environment for our customers.

Nexon also continues to hold ISO 9001:2015 certification for maintaining a quality management system. This annual assessment confirms our promise to uphold the confidentiality, integrity and availability of data and systems to meet the needs of our customers and the applicable regulatory requirements. The IRAP Assessment we are now undertaking further demonstrates our commitment to our clients by providing assurance that our customers’ environments, people, processes and information are managed safely and securely.