logo
Questions? +1 (202) 335-3939 Login
Set Up FREE Account Submit Release
Trusted News Since 1995
A service for ipo industry professionals · Tuesday, July 1, 2025 · 827,278,804 Articles · 3+ Million Readers
Got News to Share? Send 2 FREE Releases
News Search | All News Topics > IPO News Topics: By Country | By State ; Press Releases by Industry Channel > All IPO Press Releases

APRA’s new prudential standard on operational risk management comes into force

Banks, insurers and superannuation funds will need to meet higher standards of operational risk management from today as new requirements from the Australian Prudential Regulation Authority (APRA) come into force.

Cross-industry Prudential Standard (CPS) 230 Operational Risk Management requires APRA-regulated entities to be well-prepared to ensure continuity of critical services to the community and respond to business disruptions by:

  • identifying important business services and determining the extent to which these services can continue during severe disruptions; 
     
  • testing their business continuity planning to identify vulnerabilities to ensure they are positioned to overcome severe disruptions; and 
     
  • enhancing third-party risk management by ensuring risks from material service providers are identified and appropriately managed.  

The issue of operational resilience has taken on greater importance over recent years as the financial system has become more interconnected and more dependent on digital technologies and service providers. Recent geopolitical turmoil also increases risks such as cyber attacks and personnel risks associated with bad actors.

APRA Member Therese McCarthy Hockey said CPS 230 will play an important role in financially protecting the community. 

“Australians depend on banking to pay for goods and services, insurance helps us rebuild after a flood or fire and pay for vital medical treatments, while superannuation supports us to maintain a dignified lifestyle in retirement. In an environment where one crashed server or ransomware attack could leave millions without access to these essential services, effective operational risk management is vital for financial stability and community wellbeing.

“As well as identifying their own operational vulnerabilities and have plans to mitigate them, CPS 230 requires entities to have a detailed level of understanding and mitigation planning in relation to their most critical third-party service providers. This will require an entirely new mindset about where the boundaries of responsibility sit.”

Over the past two years, APRA has worked closely with industry to enable regulated entities to be ready to comply with the new standard, although APRA has granted smaller, less complex entities an extra 12 months to meet some requirements. APRA also requires each entity to provide a list of its most material service providers, which will help APRA identify concentration risks across the financial services sector.

Powered by EIN Presswire

Distribution channels: Banking, Finance & Investment Industry

Legal Disclaimer:

EIN Presswire provides this news content "as is" without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the author above.

Submit your press release

IPO News Today by EIN Newsdesk & EIN Presswire (a press release distribution service)

Follow us on Facebook and connect with us on LinkedIn

Newsmatics Inc., 1025 Connecticut Avenue NW, Suite 1000, Washington, DC 20036 · Contact · About

© 1995-2025 Newsmatics Inc., a publisher of EIN News · All Rights Reserved · Privacy Policy · User Agreement