Prudential Standard CPS 234 on Information Security aims to ensure that an APRA-regulated entity takes measures to be resilient against information security incidents (including cyber-attacks) by maintaining an information security capability commensurate with information security vulnerabilities and threats. A key objective is to minimize the likelihood and impact of information security incidents on the confidentiality, integrity or availability of information assets, including information assets managed by related parties or third parties.
Prudential Practice Guide CPG 234 provides detailed practical guidance on how regulated entities can meet their information security obligations under CPS 234. CPG 234 aims to assist regulated entities in maintaining information security and provide guidance to Boards, senior management, risk management, and information security specialists (management and operational).
Languages
This content is available in English only.
Mappings
Mappings for the Prudential Standard CPS 234 and Prudential Practice Guide CPG 234 Authoritative Sources to the Archer Control Standard Library are available in the authoritative source content pack.
Content Source
The source of this content comes from the Australian Prudential Regulation Authority (APRA).
Licensing Restrictions
The Prudential Standard CPS 234 and Prudential Practice Guide CPG 234 Authoritative Sources are available with the use of the Archer Policy Program Management, Archer IT Policy Program Management, and/or Archer Authorization and Assessment use cases. No additional license is required.
For More Information
To learn more about the Prudential Standard CPS 234 and Prudential Practice Guide CPG 234 Authoritative Source Content:
For Additional Support
To learn more about this content, please contact your Account Rep for additional details. For technical support questions, please open a support case or contact Archer at archersupport@rsa.com for more information.
