Australian Government Architecture
Search

Type

Design

Reference

Applicable from

5 Jun 2024

Mandate

Endorsed

Status

Core

Responsible agency

Comcare

Reuse category

System

Integrated Regulatory Information System (IRIS)

Responsible agency: Comcare

Integrated Regulatory Information System (IRIS) is the primary application used by Comcare’s Regulatory Operations Group for various regulatory licensing, monitoring, compliance, and investigation tasks. It is a central, organised, easy-to access place to store data about notifications (work health and safety concerns, hazards and incidents), inspections, information, and associated advice, actions or activities. 

IRIS utilises a cloud-based Customer Relationship Management (CRM) system that can be accessed via internet browser. It is built on the Microsoft Dynamics 365 Platform.

IRIS integrates with SharePoint Online for secure storage of documents. The case-related documents are stored in SharePoint and only accessible to the authorised case manager.

It uses Okta identity and access management platform for authentication of Comcare staff and the authorisation leverages Azure Active Directory Security Mapping.

Address validation is achieved by Harmony Address Validation, that is built using custom Power App Control Framework control which consumes the Harmony APIs.

For more information, please contact Comcare's ICT Strategy and Architecture Team on (02) 6276 0376 or 0431 046 830.

Capabilities

This design is part of the following capability.
CAP61

Identity Management (Business)

CAP33

Customer Relationship Management (Business)

CAP32

Case Management

CAP50

Permissions

CAP6

Application Programming Interfaces (APIs)

CAP22

APS Identity Management

CAP11

Application Security

CAP10

Information Asset Security

CAP51

Privacy Protection

CAP17

Identity Management (Individual)

CAP56

Document Management

CAP4

Information Asset Management

CAP54

Customer Relationship Management (Individual)

Policies

This design can be relevant to meeting the requirements of the following policies.
POL17

Case Management Policy

POL21

Identity Management Business policy (Position)

POL13

Identity Management Individual policy (Position)

POL34

Application Programming Interfaces (APIs) Policy

POL37

Information Asset Management policy (Position)

POL39

Information Asset Security Policy

POL40

Permissions Policy

POL41

Application Security Policy

POL43

Customer Relationship Management Policy

POL47

Privacy Protection policy

Standards

This design can be useful in achieving the intent of the following standard(s).

Case Management Standard

STA35
Case management systems enable the flow of “cases” from initiation to closure. Within handling of a “case” there are necessarily:  Information joins and restrictions.  Audit and control processes (across workflows).  Dynamically routing abilities for a case.  Goals/outcomes…

Application Programming Interfaces (APIs) Standard

STA37
API solutions can facilitate the interconnection of Commonwealth entity, supplier, and partner functionality needed by government to manage internal and external engagements with stakeholders. Internal interoperability via API functionality can increase productivity, efficiency, accuracy, and…

Information Asset Management Standard

STA41
Information is one of the most valuable assets the Australian Government holds, and it needs to be managed in a similar way to other high value assets. Commonwealth entities collect many types of information assets as they operate in their varied capacities. Entities should adopt a strategic whole-…

Information Asset Security Standard

STA52
The Australian Government ensures the safety and security of its operations to remain a trusted custodian of sensitive information. It will continue to maintain the safe, secure operation of government systems and technology through the effective implementation of the Information Security Manual,…

Permissions Standard

STA53
Permissions systems facilitate efficiency, consistency, and a seamless workflow across entities responsible for permissions issuance. Unique business needs and governing requirements will dictate solution selection, design, and implementation. The considerations outlined in the Standard below are…

Application Security Standard

STA54
The Australian Government ensures the safety and security of its operations to remain a trusted custodian of sensitive information. It will continue to maintain the safe, secure operation of government systems and technology through the effective implementation of the Information Security Manual,…

Customer Relationship Management Standard

STA59
The CRM standard seeks to ensure that government CRM systems align with current digital policies, address both strategic and operational needs of entities, and are regularly monitored and updated to fully optimise their benefits.  Additionally, this standard outlines strategic requirements…

Privacy Protection standard

STA65
The Australian Government ensures the safety and security of its operations to remain a trusted custodian of sensitive information. This standard is designed to ensure that personal information of individuals is handled in a manner that is consistent with legislative and regulatory frameworks. This…
Was this information helpful?

Do not include any personal information. We are unable to respond to comments or feedback. If you would like a response, please email, or phone us. Our details are on the AGA contact page www.architecture.digital.gov.au/contact-us.