We currently are accredited with
- NIST
- Cyber Essentials
- Cyber Essentials Plus
- ST4S
NIST
In 2023 IRIS Connect won a contract with the US government agency: HHS (Dept Health and Human Services), Administration for Children and Families (ACF), Office of Head Start (OHS). As part of the federal requirements, IRIS Connect has implemented 300 tailored NIST security controls as required for a FIPS 199 categorization of moderate, based on the US government's classification of data they would be uploading to IRIS Connect.
The security controls are from the NIST Special Publication 800-53 Revision 5, Security and Privacy Controls for Information Systems and Organizations. The National Institute of Standards and Technology (NIST) Special Publication 800-53 is a set of recommended security and privacy controls for information systems and organizations to help meet the US government's Federal Information Security Management Act (FISMA) requirements.
NIST controls cover 20 areas as shown in Table 1
Cyber Essentials and Cyber Essentials Plus
Cyber Essentials Certificate 2025
At IRIS Connect, the security and integrity of our systems and data are of paramount importance. That’s why we are proud to be certified under the UK government’s Cyber Essentials scheme—a recognised standard that demonstrates our commitment to safeguarding against the most common cyber threats. This certification validates that we have implemented robust security controls across our IT infrastructure, including firewalls, secure configuration, access control, malware protection, and patch management.
Click this link to access the Cyber Essentials digital certificate
Cyber Essential Plus Certificate 2025
Taking our commitment even further, we have also achieved Cyber Essentials Plus certification. This advanced level includes a rigorous, independent technical audit to verify the effectiveness of our cyber security measures. It provides assurance to our users, partners, and stakeholders that we don't just follow best practices—we proactively test them to ensure our systems remain secure. These certifications reflect our ongoing dedication to data protection, risk management, and continuous improvement in cyber resilience.
Click here to access the Cyber Essentials Plus digital certificate
ST4S
IRIS Connect has been assessed by Safer Technologies 4 Schools (ST4S) Safer Technologies 4 Schools (ST4S) Vendor Badge Program
What is Safer Technologies 4 Schools (ST4S)?
The Safer Technologies 4 Schools (ST4S) service is a national standardised approach to evaluating digital products and services used by schools across Australia. It is supported by the state and territory governments and the Catholic and independent school sectors. Learn more at www.st4s.edu.au
It also covers schools in New Zealand. Further information here
Why was the ST4S established?
ST4S was established in collaboration with all Australian state, territory, Catholic and Independent school sectors to develop a nationally consistent security and privacy control framework to help schools reduce risks when choosing digital products and services.
How does ST4S benefit schools?
ST4S equips educators with the information to make informed decisions about the privacy and safety of the products and services used in their schools.
What does usage of the ST4S badge mean?
Vendors in the program have undergone a rigorous assessment that indicates the product does not present a significant safety or privacy risk to schools. Ongoing use of the badge requires vendors to perform annual ST4S Readiness Checks to help ensure continued compliance with the most important ST4S assessment Framework requirements.
How does the ST4S badge benefit schools?
The badge helps educators easily identify vendors for which comprehensive information is available to assess how it can be used in their schools. It provides a recognisable symbol that a product or service has been assessed through the ST4S framework and has committed to supporting student and school online security and safety
Visit here to verify our ST4S badged status