SecurityBrief Australia - Technology news for CISOs & cybersecurity decision-makers
Australia

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Secure cloud australian government buildings digital shield connectivity
#
Cloud Security
#
AI Security
#
Risk & Compliance

Wiz secures IRAP Protected level, enabling cloud for agencies

Mon, 1st Sep 2025
Author image
By Kaleah Salmon, Journalist

Wiz has completed the Infosec Registered Assessors Program (IRAP) assessment at the Protected level, making its cloud security platform available to support Australian government agencies in line with the Australian Government Information Security Manual (ISM).

The IRAP assessment is considered a critical benchmark for evaluating the security of cloud services intended for use across the Australian public sector. Agencies selecting IRAP-assessed platforms benefit from strengthened protection for sensitive data, compliance with regulatory requirements, and increased confidence when transitioning workloads to the cloud.

Budd Ilic, ANZ Country Manager at Wiz, commented on the development:

"Public sector teams are balancing rapid modernisation with the need to protect critical systems. Wiz brings everything into one platform, making it easier to see what's happening, focus on what matters most, and reduce risk fast. With IRAP now complete, Australian agencies can use the same platform trusted by global defense, intelligence, and government organisations to move securely and confidently in the cloud."

Through the completion of the rigorous IRAP assessment, Wiz demonstrates that its platform meets strict security controls and government-mandated standards. This achievement provides public sector organisations with increased assurance as they seek to transition sensitive data and mission-critical workloads to cloud-based solutions.

Global government usage

Wiz's platform is already in use by government agencies globally, including in the United States. The platform holds FedRAMP Moderate and StateRAMP authorisations and is undergoing assessment for Department of Defence Impact Level 4 (DoD IL4). These credentials indicate compliance with some of the most stringent security requirements in government IT environments.

For example, the United States Navy uses Wiz to secure its COSMOS platform, helping prioritise risk based on severity and impact, and automate compliance documentation. The company states that with the IRAP assessment complete, Australian government agencies will gain streamlined access to these same capabilities.

Key platform functionality

Wiz is described as a cloud-native application protection platform (CNAPP) designed to align with the operational needs of modern public sector teams. It is intended to replace multiple point solutions, including Cloud Security Posture Management (CSPM), Cloud Workload Protection Platforms (CWPP), Kubernetes Security Posture Management (KSPM), Cloud Infrastructure Entitlement Management (CIEM), Infrastructure as Code (IaC) scanning, and vulnerability management, consolidating these into a single unified platform.

The platform provides agentless visibility across cloud infrastructure, including virtual machines, containers, serverless resources, and artificial intelligence services. This approach is designed to avoid operational blind spots and can be connected in minutes.

To effectively manage risk, the Wiz Security Graph is utilised to correlate information, such as vulnerabilities, misconfigurations, identity exposures, network risks, secrets, and malware. This analysis enables agencies to uncover complex attack paths and security gaps that may not be visible through isolated tools.

Wiz also incorporates built-in frameworks to support compliance with IRAP and ISM. These include automated evidence collection and continuous monitoring frameworks such as NIST, Essential 8, and CIS benchmarks for platforms including Linux, Windows, and Red Hat STIG. The company undergoes annual audits against standards, including SOC 2 Type 2, ISO 27001/27701/27017/27018, and PCI, and utilises encryption that meets FIPS 140-2 and 197 standards.

In addition, Wiz supports agencies in managing and securing artificial intelligence initiatives, including detecting shadow AI, monitoring AI usage, and securing AI-related pipelines. The platform also aligns with the Zero Trust Maturity Model, assessing and reducing risk across its five pillars and providing a foundation for secure cloud migration projects.

Sector alignment

Completing the IRAP assessment at the Protected level is a key requirement for Australian government agencies considering migration or expansion in the cloud. By providing a platform that aligns with Australian government policy and standards, Wiz positions itself as an option for agencies seeking integrated security management for complex cloud environments and digital service delivery.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Safe AI coaches staff to cut cyber attack errors
AI reshapes cyber threats as experts warn on automation
Tenable hack of Copilot AI agent exposes fraud risks
Agentic AI surge in 2026 sparks fresh cyber security risks
Networking as a financial catalyst: Unlocking true cost efficiency

Top stories

Enterprises pivot to risk-aware, human-centric AI in 2026
Cyber leaders warn resilience gap as boards eye 2026
AI bubble cools as HR shifts to outcomes & new roles
Keeper links identity security alerts into ServiceNow
Precision Group unites IT & ESG for SGP+S Level 3