A large Government agency required an urgent security assessment of their voting system capability.
Chalfont was engaged to undertake an Information Security Registered Assessor (IRAP) within a three week timeframe. This Australian Signals Directorate (ASD) initiative aims to provide high-quality information and communications technology (ICT) services, while also assessing the implementation, appropriateness and effectiveness of the systems security controls. Due to the nature of the system and deadline, Chalfont brought onboard three of their most experienced IRAP assessors to prioritise tasks and work on the existing technology concurrently to meet the deadline.
Overall, Chalfont was able to provide a detailed security and compliance report within the timeframe. We maximised our approach to allow the executives and key stakeholders to have enough time to make a well-informed decision on whether the system was fit for purpose.
Communication was a key element to this project. Due to the short timeframe Chalfont took the utmost care to communicate every aspect of the project and key deliverables. This ensured clarity and visibility across the breadth of the project.
Chalfont consultants also worked closely with key stakeholders and Subject Matter Experts (SMEs) to quickly gain a deep understanding on the voting system.
No time was wasted working on the assessment, with Chalfont consultants conducting the first stage of the project within a week followed by a physical review. Underpinned by the workshops the reviews informed the security compliance report. Our consultants were able to deliver the project within the short timeframe and allowed the executives to make a timely and informed decision on whether the system was suitable and effective.