Australian Prudential Regulation Authority (APRA)
The Australian financial services industry is regulated by the Australian Prudential Regulation Authority (APRA). APRA’s mission is to establish and enforce prudential standards designed to ensure that, under all reasonable circumstances, financial promises made by the institutions it supervises are met within a stable, efficient, and competitive financial system. The Prudential standards CPS 231, CPG 234, and CPG 235 are three such standards and practice guides that govern, respectively, Outsourcing, Management of Information Technology Security Risk, and Management of Data Risk.
Google Cloud has produced two guidance documents in response to APRA’s Prudential Standards: Google Cloud’s Response to APRA Prudential Standards Whitepaper, which provides information on Prudential Standard CPS 231, and a mapping of the GCP and G Suite controls and processes outlined in our Service Organization Controls (SOC) 2 Type II report to those spelled out under APRA CPG 234 and CPG 235.
Google Cloud’s Response to APRA CPS 231, CPG 234, and CPG 235 is available to our existing customers and may be requested via customer support. Navigate directly to the console for GCP and the contact center for G Suite. Potential customers can reach out to sales for more information.