🤖 Ready for Sovereignty 2026: Australian Insights Report. Get your copy
MarketplaceGRCCPS 230
GRCStandard

CPS 230

Prudential Standard CPS 230 Operational Risk Management

CPS 230 sets out requirements for APRA-regulated entities to effectively manage operational risks. It covers obligations on governance, risk frameworks, and risk controls to ensure resilience against operational disruptions.

Book your strategy callView source ↗

Overview

The Prudential Standard CPS 230 enforces a structured approach to operational risk management for entities regulated by the Australian Prudential Regulation Authority (APRA). It mandates robust governance arrangements, comprehensive operational risk management frameworks, and appropriate risk controls. This standard aims to reduce the impact of operational disruptions on these entities and the broader financial system. CPS 230 incorporates expectations for incident response, business continuity, and operational resilience, alongside periodic risk assessments and reporting obligations.

Related in GRC

GRCStandard

ISO 14001 — ISO 14001:2026 - Environmental management systems

ISO 14001:2026 is the internationally recognized standard for environmental management systems (EMS). It offers a framework for organizations to improve environmental performance through methods including resource optimization, waste management, and stakeholder engagement.

International Organization for Standardization (ISO) • v2026

View details
GRCLaw

SOX — Sarbanes-Oxley Act of 2002

The Sarbanes-Oxley Act (SOX) is a U.S. federal law enacted in 2002 to enhance corporate accountability and financial transparency in response to major corporate scandals. It applies to publicly traded companies, mandating stricter financial reporting, internal controls, and governance standards.

US Government • United States

View details
GRCLaw

AML/CTF Act — Anti-Money Laundering and Counter-Terrorism Financing Act 2006

This is an Australian law established to prevent money laundering and financing of terrorism. It imposes obligations on certain entities to implement anti-money laundering and counter-terrorism financing measures, including customer due diligence, reporting, and record-keeping.

Australian Government • Australia • vCompilation No. 60, 31 March 2026

View details
GRCLaw

AML/CTF Rules — Anti-Money Laundering and Counter-Terrorism Financing Rules 2025

The Anti-Money Laundering and Counter-Terrorism Financing Rules 2025 provide detailed obligations on reporting entities in Australia to prevent financial crimes, including money laundering and terrorism financing. Administered by the Department of Home Affairs, it supports compliance with the Anti-Money Laundering and Counter-Terrorism Financing Act 2006.

Australian Government • Australia • vCompilation No. 1, 31 March 2026

View details

Ready to manage these frameworks?

6clicks maps regulations to controls, evidence and risks — automatically.

Book your strategy call