This Prudential Standard aims to ensure that an APRA-regulated entity takes measures to be resilient against information security incidents (including cyber-attacks) by maintaining an information security capability commensurate with information security vulnerabilities and threats.
It requires organisations to significantly raise their information security capabilities commensurate with the evolving size and extent of the threats to their assets.
At Siege Cyber we provide penetration testing services to APRA-regulated entities to help them achieve compliance against the CPS 234 Standard. The key objective is to minimise the likelihood and impact of information security incidents on the confidentiality, integrity or availability of information assets, including information assets managed by related parties or third parties.
We can assist in implementing a suitable testing program and regime to ensure the effectiveness of security controls and maintain compliance with CPS 234.