APRA

Secure Sensitive Data and Maintain Robust Cybersecurity Practices to Comply with APRA CPS 234.

hero section

Overview

With CPS 234 Regulators, standard-setters and financial services institutions are coming together to boost resilience against evolving threats. The Australian Prudential Regulation Authority's (APRA) Information Security Standard CPS 234 commenced on the 1st of July 2019 and mandates all APRA regulated entities to build the information security controls, capabilities, and measures to be resilient against security incidents, including cyber-attacks. The entities need to bolster their hold upon information asset identification and classification, roles and responsibilities around information security with clear Segregation of Duties, implementation and testing of information security controls, internal audits, incident management, and breach notification.

CPS 234 calls for protective measures to be in tandem with the size of the business and the threats faced. Any third party that manages the information held by an APRA regulated company also needs to comply.

CPS

How Fortanix Helps

Fortanix delivers essential data security capabilities through a unified platform. It enables organizations to identify at-risk services, prioritize remediation efforts, and safeguard sensitive data across all layers and systems—both on-premises and in the cloud. 

Manage assets and vulnerabilities by discovering, assessing, and remediating your encryption key security gaps. Get powerful insights into your cryptographic security posture across multi-cloud and on-prem environments for a complete inventory and visibility.   
Cryptographic Posture Management

Manage assets and vulnerabilities by discovering, assessing, and remediating your encryption key security gaps. Get powerful insights into your cryptographic security posture across multi-cloud and on-prem environments for a complete inventory and visibility.   

Data Security Platform
Data Security Platform

Protect your information systems with data encryption across databases, virtual machines, filesystems, and multi-cloud for complete security and compliance without performance loss and at scale. With data tokenization in place, replace sensitive data to prevent data exposure while putting it work. 

Encryption Key Management
Encryption Key Management

Meet cybersecurity requirements for cryptography with centralized and simplified key lifecycle management for the hybrid multicloud, through a single-pane-of-glass. Store keys in natively integrated FIPS 140-2 level 3 certified HSM, available on-premises or SaaS.   

Secure AppDev 
Secure AppDev 

Enforce secure code standards across the storage, control and management of secrets, credentials, certificates, API keys, and tokens from a centralized solution with enterprise-grade controls. Cryptographically sign code to verify the authenticity and integrity of applications, ensuring they are not altered or corrupted.   

Zero Trust Architecture   
Zero Trust Architecture   

Implement essential cybersecurity controls with granular Role-Based Access Controls and other advanced operational and security features. Ensure that only authorized users can access encryption keys or see decrypted data for a specified duration of the business case.  

Featured Resource

APRA Prudential Standards CPS 234: Proactive Protection Policies & Procedures

CPS 230/234 are Australian cybersecurity regulations that set minimum standards for data security under the supervision of APRA. It works in tandem with their 2020-2024 Cyber Security Strategy. The motivation is simple — beef up the cybersecurity resiliency and safeguard sensitive data. 
Read More
featured resource apra

Resource

Data Security-as-a-Service: An Easier Path to Data Security and Compliance

OnDemand Webinar

Data Security-as-a-Service: An Easier Path to Data Security and Compliance
Complying with APRA CPS 230 and CPS 234/235: Proactive Protection Policies & Procedures

Whitepaper

Complying with APRA CPS 230 and CPS 234/235: Proactive Protection Policies & Procedures
How Fortanix helps meet APRA CPS 230 guideline

Solution Brief

How Fortanix helps meet APRA CPS 230 guideline?

Highlights

Stay up to date with the latest developments.

Blog
Best Protection for Blockchain BIP32 Keys
Blog
Hello World! Fortanix Introduces Armet AI, a Secure Turnkey GenAI Solution
Solution Brief
How Fortanix helps meet APRA CPS 230 guideline?
See how Fortanix strengthens and accelerates your enterprise compliance workflows in a personalized demo.
Fortanix-logo

4.6

star-ratingsgartner-logo

As of August 2025

SOC-2 Type-2ISO 27001FIPSGartner LogoPCI DSS Compliant

US

Europe

India

Singapore

3910 Freedom Circle, Suite 104,
Santa Clara CA 95054

+1 408-214 - 4760|info@fortanix.com

High Tech Campus 5,
5656 AE Eindhoven, The Netherlands

+31850608282

UrbanVault 460,First Floor,C S TOWERS,17th Cross Rd, 4th Sector,HSR Layout, Bengaluru,Karnataka 560102

+91 080-41749241

T30 Cecil St. #19-08 Prudential Tower,Singapore 049712