Prudential Standard CPS 234
In our continuous efforts to improve and implement controls and safeguards for our clients, we have undergone a self-assessment to affirm our compliance with a recently introduced security standard: Prudential Standard CPS 234 Information Security (CPS 234), enacted by the Australian Prudential Regulation Authority (APRA).
CPS 234 fortifies companies’ resilience against information security incidents and enhances their ability to respond swiftly and effectively in the event of a breach. APRA-regulated entities and suppliers are required to:
• Clearly define information security-related roles and responsibilities;
• Maintain information security capability;
• Implement controls to protect information assets and undertake regular testing and assurance of the effectiveness of controls; and
• Promptly notify APRA of material information security incidents.