We’re pleased to announce that Assemblic has been assessed against the Australian Government’s Information Security Manual (ISM) at the Official:Sensitive classification level by an accredited IRAP (Infosec Registered Assessors Program) assessor.
This assessment provides Australian government agencies with independent assurance that Assemblic meets the security controls required to handle sensitive government information — removing a significant barrier for agencies looking to adopt Rules as Code at scale.
What the assessment covers
The IRAP assessment evaluated Assemblic’s architecture, infrastructure and security practices against the ISM framework published by the Australian Signals Directorate (ASD). It was conducted by a qualified, independent IRAP assessor.
Available through the Drupal Services Panel
Assemblic is now available for purchase by Australian government agencies through the Drupal Services Panel, via Salsa Digital. This means eligible agencies can procure Assemblic without a full open-market tender process.
“Achieving IRAP assessment to Official:Sensitive is a meaningful step for Assemblic and for the broader adoption of Rules as Code in Australian government. Agencies now have independent assurance that the platform meets the security standards they require — which means less time on procurement hurdles and more time focused on the real work of turning complex legislation into reliable, working code.” — Kurt Foster, CTO, Assemblic
Available directly
For those outside of the Australian government, Assemblic can be purchased directly. Please see our Pricing and then sign up.
About Assemblic
Assemblic is an enterprise-grade Rules as Code platform built on OpenFisca. It streamlines the complexities of project setup, handling source code management, deployment pipelines, infrastructure and secure hosting. Its security features include WAF, CDN, and edge computing.