Compliance with APRA CPS 234 using Alyne

Capabilities and benefits of utilising Alyne's Software as a Service for your organisation's APRA CPS 234 requirements.

Compliance with APRA CPS 234

The prudential standard CPS 234, published by the Australian Prudential Regulation Authority (APRA), has been in force since 1 July 2019 and must be complied with by all of Australia’s financial institutions such as banks, insurers and superannuation funds. CPS 234 approaches compliance not merely as an IT problem but as an organisational one — it demands a holistic organisational response involving the board, senior management, audit and all other operational functions. The standard imposes obligations relating to information security, resilience against cyber attacks and standardised incident management, calling for better control over the visibility of the organisation's information assets.

The challenge however, is that regular and extensive analysis of information assets to identify and address the vulnerabilities demands a great amount of time and effort as it goes beyond mere IT compliance to complete organisational management.

Learn more about how we have approached these requirements within Alyne. Our APRA CPS 234 template comes fully loaded with 166 controls related to CPS 234 and can be customised to suit your business needs, and more. Follow the link to our dedicated CPS 234 page which includes a white paper outlining the requirements and benefits in detail. Keep watching our dedicated APRA CPS 234 page for more resources to come.

"Alyne has been tremendously helpful in streamlining our supplier due diligence process and managing our risk register in support of our APRA and ISO27001 certification requirements."

- Mark Powell, Frankie


More information


Contact our sales team at to learn more about the Alyne APRA CPS 234 solution. 


Bayley Benton

Related Posts

Blog thumbnail

Library Update: EBA Guidelines under SREP

The latest deployment to our Content Library - the European Banking Authority Guidelines on ICT Risk Assessment under the Supervisory Review and Evaluation process (EBA/GL/2017/05).