APRA CPS 234 Question Set
This download includes the APRA CPS 234 requirements and mapped questions that you can use to internally audit your organisation.
APRA has released a new prudential standard and updated guidance in relation to information security across all APRA-regulated industries. As technological developments continue to expand, the scope and sophistication of potential malicious activity against financial institutions will increase. The new requirements and guidance will help regulated entities to manage these risks.
The prudential standard is known as APRA CPS 234 and includes the following sections:
- Roles and responsibilities
- Information security capability
- Policy framework
- Information asset identification and classification
- Implementation of controls
- Incident management
- Testing control effectiveness
- Internal audit
- APRA notification
Getting StartedEnter your getting started instructions here