Finance
Businesses who operate under the Australian Prudential Regulatory Authority (APRA) regulations, such as banks, finance firms, insurers and superannuation funds, are required to comply with the APRA CPS 234 regulatory framework.
APRA CPS 234 Compliance
Businesses who operate under the Australian Prudential Regulatory Authority (APRA) regulations, such as banks, finance firms, insurers and superannuation funds, are required to comply with the APRA CPS 234 regulatory framework.
APRA CPS 234 is designed to enhance the cyber security capabilities of APRA-regulated entities by ensuring that information security policies, procedures, and controls are commensurate with the size and complexity of the operation.
In addition, any organisation that accepts or processes credit card payments must comply with the Payment Card Industry Data Security Standard (PCI DSS) which is a set of security standards designed to ensure a secure environment is maintained.
To comply with the requirements of the APRA CPS 234 regulatory framework or PCI DSS, your organisation will need to:
- Conduct information security risk assessments
- Develop a strategy to address identified risks
- Implement information security policies and procedures
- Implement controls to protect information assets
- Assess third-party service provider security
- Develop a cyber incident response plan
- Regularly review and test cyber security controls
How Synergy Compliance can help you:
Synergy Compliance specialise in helping businesses achieve the required compliance and accreditation standards needed to comply with APRA CPS 234 and PCI DSS. In doing so, our clients improve their cyber security and data privacy to the necessary standard.
Our team will partner with you to map a pathway to compliance, and support you with each step,
including all key categories of Personnel (ie training), Physical, Cyber Security and Governance.
