We are committed to ensuring the security of Cimara. All parts of the system are put through a rigorous penetration testing process every six months, with the most recent conducted on 8 October 2018 by the ACT Government Shared Services ICT team, who tested and passed the system. If any issues are found, our practice is to resolve these as a matter of priority.
System files and data collected within Cimara are stored in Amazon Web Services’ highly secured data centre in Sydney. An application wide end-to-end encryption as well as a powerful Secure Sockets Layer (SSL) with 256-bit symmetric encryption and a 2048-bit RSA signature key governs all data transfers.
In addition to security, all of Cimara’s lead operators who have access to sensitive data and any personally identifiable information are required to undergo and pass all relevant security clearance checks inline with the Australian Government privacy requirements.