IT disaster recovery, cloud computing and information security news

Australian Prudential Regulation Authority releases cyber resilience standard

Details
Published: Tuesday, 13 November 2018 09:45

APRA, the Australian Prudential Regulation Authority, has released the final version of its new Prudential Standard CPS 234, which is focused on resilience against information security incidents.

CPS 234 requires APRA-regulated entities to:

  • Clearly define information security related roles and responsibilities;
  • Maintain an information security capability commensurate with the size and extent of threats to their information assets;
  • Implement controls to protect information assets and undertake regular testing and assurance of the effectiveness of controls; and
  • Promptly notify APRA of material information security incidents.

To help entities fulfil their requirements, APRA will shortly update Prudential Practice Guide CPG 234 Management of Information and Information Technology.

Read CPS 234 (PDF).



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

Impact tolerance guide

Additional Resources

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.