Prudential Standard CPS 234 on Information Security aims to ensure that an APRA-regulated entity takes measures to be resilient against information security incidents (including cyber-attacks) by maintaining an information security capability commensurate with information security vulnerabilities and threats. A key objective is to minimize the likelihood and impact of information security incidents on the confidentiality, integrity or availability of information assets, including information assets managed by related parties or third parties.
Prudential Practice Guide CPG 234 provides detailed practical guidance on how regulated entities can meet their information security obligations under CPS 234. CPG 234 aims to assist regulated entities in maintaining information security and provide guidance to Boards, senior management, risk management, and information security specialists (management and operational).
This content is available in English only.
Mappings for the Prudential Standard CPS 234 and Prudential Practice Guide CPG 234 Authoritative Sources to the RSA Archer Control Standard Library are available in the authoritative source content pack.
The source of this content comes from the Australian Prudential Regulation Authority (APRA).
The Prudential Standard CPS 234 and Prudential Practice Guide CPG 234 Authoritative Sources are available with the use of the RSA Archer Policy Program Management, RSA Archer IT Policy Program Management, and/or RSA Archer Authorization and Assessment use cases. No additional license is required.
For More Information
For Additional Support
To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case or contact RSA Archer at firstname.lastname@example.org for more information.