March 07, 2018

APRA has responded to the growing threat of cyber attacks by proposing its first prudential standard on information security, known as CPS 234. APRA released a package of measures, titled “Information Security Management: A new cross-industry prudential standard,” for industry consultation. The package is aimed at shoring up the ability of APRA-regulated entities to repel cyber adversaries, or respond swiftly and effectively in the event of a breach. Comment period is open until June 07, 2018.

Key areas where APRA is hoping to lift standards include assurance over the cyber capabilities of third parties such as service providers and enhancing entities’ ability to respond to, and recover from, cyber incidents. APRA proposes to apply this standard authorized deposit-taking institutions, general insurers, life insurers, private health insurers, licensees of registrable superannuation entities (RSE licensees), and authorized or registered non-operating holding companies. APRA intends to finalize the proposed standard toward the end of the year, with a view to implementing CPS 234 from July 01 next year. The proposed new standard, CPS 234, would require regulated entities to:

  • Clearly define the information security-related roles and responsibilities of the board, senior management, governing bodies, and individuals
  • Maintain information security capability commensurate with the size and extent of threats to information assets and which enables the continued sound operation of the entity
  • Implement information security controls to protect its information assets and undertake systematic testing and assurance regarding the effectiveness of those controls
  • Have robust mechanisms in place to detect and respond to information security incidents in a timely manner
  • Notify APRA of material information security incidents

 

Related Links

Comment Due Date: June 07, 2018

Keywords: Asia Pacific, Australia, Banking, Insurance, CPS 234, Cyber Risk, Prudential Standard, APRA

Related Articles
News

PRA Finalizes Reporting Amendments to Pillar 2 Liquidity Framework

PRA published the final Policy Statement PS13/19 on regulatory reporting amendments and clarifications to the Pillar 2 liquidity framework for banks in UK.

June 17, 2019 WebPage Regulatory News
News

FSB Assesses Implementation of Compensation Standards and Principles

FSB published the sixth progress report on the implementation of its principles and standards for sound compensation practices in financial institutions.

June 17, 2019 WebPage Regulatory News
News

IMF Publishes Reports on 2019 Article IV Consultation with Ireland

IMF published its staff report and selected issues report under the 2019 Article IV consultation with Ireland.

June 17, 2019 WebPage Regulatory News
News

EBA Updates Data on Deposit Guarantee Schemes in EU

EBA published the 2018 data on two key concepts in the Deposit Guarantee Schemes Directive (DGSD)—namely, available financial means and covered deposits.

June 17, 2019 WebPage Regulatory News
News

SNB Updates Form for Reporting Solvency Risk of Counterparties

SNB published the survey (Form Release 5.01) and related documentation for reporting solvency risk of counterparties in the interbank sector (ARIS).

June 17, 2019 WebPage Regulatory News
News

ISDA Studies Variation in Global Implementation of Margin Requirements

ISDA published a paper that highlights the main areas of difference in the implementation of margin requirements for non-cleared derivatives across jurisdictions and makes recommendations on how to resolve these variations.

June 17, 2019 WebPage Regulatory News
News

US Agencies Finalize Rule to Streamline Reporting for Small Banks

US Agencies (FDIC, FED, and OCC) adopted a final rule to streamline the regulatory reporting requirements for small institutions.

June 17, 2019 WebPage Regulatory News
News

IAIS Consults on Revisions to IAIS Supervisory Material

IAIS has launched a public consultation on revisions to the IAIS supervisory material.

June 14, 2019 WebPage Regulatory News
News

IMF Paper on Implementing Prudential Standards in Developing Economies

IMF published a working paper that provides practical guidance on how developing economies, including non-Basel Committee member countries, could incorporate international standards into their prudential framework.

June 14, 2019 WebPage Regulatory News
News

EBA Single Rulebook Q&A: Second Update for June 2019

EBA published answers to five questions under the Single Rulebook question and answer (Q&A) updates for this week.

June 14, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 3262