Products
By Use Cases By Roles
Data Command Center
View
Learn more

Asset and Data Discovery

Discover dark and native data assets

Learn more

Data Access Intelligence & Governance

Identify which users have access to sensitive data and prevent unauthorized access

Learn more

Data Privacy Automation

PrivacyCenter.Cloud | Data Mapping | DSR Automation | Assessment Automation | Vendor Assessment | Breach Management | Privacy Notice

Learn more

Sensitive Data Intelligence

Discover & Classify Structured and Unstructured Data | People Data Graph

Learn more

Data Flow Intelligence & Governance

Prevent sensitive data sprawl through real-time streaming platforms

Learn more

Data Consent Automation

First Party Consent | Third Party & Cookie Consent

Learn more

Data Security Posture Management

Secure sensitive data in hybrid multicloud and SaaS environments

Learn more

Data Breach Impact Analysis & Response

Analyze impact of a data breach and coordinate response per global regulatory obligations

Learn more

Data Catalog

Automatically catalog datasets and enable users to find, understand, trust and access data

Learn more

Data Lineage

Track changes and transformations of data throughout its lifecycle
Data Controls Orchestrator
View
Data Command Center
View
Sensitive Data Intelligence
View

Asset Discovery
Data Discovery & Classification
Sensitive Data Catalog
People Data Graph
Learn more

Privacy

Automate compliance with global privacy regulations

Data Mapping Automation

View

Data Subject Request Automation

View

People Data Graph

View

Assessment Automation

View

Cookie Consent

View

Universal Consent

View

Vendor Risk Assessment

View

Breach Management

View

Privacy Policy Management

View

Privacy Center

View

Learn more

Security

Identify data risk and enable protection & control

Data Security Posture Management

View

Data Access Intelligence & Governance

View

Data Risk Management

View

Data Breach Analysis

View

Learn more

Governance

Optimize Data Governance with granular insights into your data

Data Catalog

View

Data Lineage

View

Data Quality

View
Data Controls Orchestrator
View
Solutions
Technologies

Covering you everywhere with 1000+ integrations across data systems.

Snowflake

View

AWS

View

Microsoft 365

View

Salesforce

View

Workday

View

GCP

View

Azure

View

Oracle

View

Learn more

Regulations

Automate compliance with global privacy regulations.

US California CCPA

View

US California CPRA

View

European Union GDPR

View

Thailand’s PDPA

View

China PIPL

View

Canada PIPEDA

View

Brazil's LGPD

View

+ More

View

Learn more

Roles

Identify data risk and enable protection & control.

Privacy

View

Security

View

Governance

View

Marketing

View
Resources

Blog

Read through our articles written by industry experts

Collateral

Product brochures, white papers, infographics, analyst reports and more.

Knowledge Center

Learn about the data privacy, security and governance landscape.

Securiti Education

Courses and Certifications for data privacy, security and governance professionals.
Company

About Us

Learn all about Securiti, our mission and history

Partner Program

Join our Partner Program

Contact Us

Contact us to learn more or schedule a demo

News Coverage

Read about Securiti in the news

Press Releases

Find our latest press releases

Careers

Join the talented Securiti team

APRA Prudential Standard CPS 234 Information Security

Operationalize compliance with the most comprehensive PrivacyOps platform

Last Updated on September 28, 2023

Privacy Center
Fully Functional In Minutes

Elegant Consumer Frontend, Fully Automated Backend, Privacy Regulation Intelligent Everywhere.

Per a Cisco report in 2018, Australian businesses receive nearly 5,000 cyber threats daily. These businesses include supermarkets, banks, social media sites, and online shopping sites. Naturally, these sites collect and maintain data on millions of their users, further exasperating the threats cyberattacks pose to businesses in Australia.

With that in mind, the Australian Prudential Regulation Authority (APRA) issued a new prudential standard, known as the Prudential Standard CPS 234 Information Security (Prudential Standard CPS 234), to ensure organizations develop a more robust and resilient information security infrastructure to deal with cybersecurity threats. This standard applies to all ‘APRA-regulated entities’ as defined under Section 2 of the Prudential Standard CPS 234.

The Prudential Standard CPS 234 encourages organizations to take necessary measures to protect the data they hold proportionate to the sensitivity of the data. All APRA-regulated entities were expected to comply with the Prudential Standard CPS 234 by 1st July 2019.

The Solution

Securiti offers organizations access to features such as PI data discovery, data categorization, documented accountability, security controls, and AI-process automation, among others. These can aid an organization’s APRA Prudential Standard CPS 234 compliance efforts significantly.

Thanks to its state-of-the-art artificial intelligence and machine learning-based algorithms, Securiti has become a market leader in providing data governance and compliance solutions.

Request a demo today and learn more about how Securiti can help your organization’s compliance efforts.

Automate Information Asset Identification & Classification

Section: 20

Deliver highly accurate and granular auto-classification of datasets and data labeling using sensitive data intelligence. Enrich Asset identification and classification with classification levels, sensitivity labels, or other organization specific data.

Datasets can be classified based on their purpose and data catalogs can be enriched with security meta tags to help you identify appropriate security controls based on data sensitivity.

Implement Security Controls

Sections: 21, 22

Have effective security measures and protocols in place to protect all data while ensuring access to sensitive data is restricted to authorized personnel only. Establish a centralized security framework to enforce and manage policies around accessing a resource (file, folder, database, table, column etc) for a particular set of users and/or groups.

These security controls can be tailored to meet any specific requirements under information security laws that an organization is subject to.

Automate Incident Management

Sections: 23, 24, 25, 35, 36

Have a robust and effective automated incident response plan in place that kicks into action as soon as any suspected activity is detected across your database. Automation of compliance actions and breach notifications helps your organization meet the regulatory breach notification timeline of 72 hours.

Furthermore, track all remediation activities and impacted users to ensure that detailed audit trails are maintained for documentation and future insights.

An APRA-regulated entity must clearly define the information security-related roles and responsibilities of the Board, senior management, governing bodies, and individuals.

All APRA-regulated entities must maintain an information security framework and policy framework that is capable of handling the size and extent of threats to their information assets.

In case of an information security incident, an APRA-regulated entity must inform the APRA within 72 hours of becoming aware of such an incident.

An APRA-regulated entity must inform the APRA within ten days if it becomes aware of a vulnerability within its material information security framework that it cannot remedy promptly.

An APRA-regulated entity must test the effectiveness of its information security controls through a systematic testing program.

Forrester Names Securiti a Leader in the Privacy Management Wave Q4, 2021

Read the Report

Securiti named a Leader in the IDC MarketScape for Data Privacy Compliance Software

Read the Report

At Securiti, our mission is to enable enterprises to safely harness the incredible power of data and the cloud by controlling the complex security, privacy and compliance risks.