Attend to learn how to:
- Clearly define the roles and responsibilities of key personnel & the Board
- Effectively communicate and report to the Board
- Create CPS 234 ready information security frameworks and policies
- Implement robust information asset classification
- Conduct third party assessments
- Test and monitor control effectiveness
- Audit the design and operating effectiveness of information security controls
- Embed CPS 234 into incident response plans and streamline notification procedures
- Demonstrate compliance to the regulator
- Board and Executive
- Chief Information Security Officers
- Chief Security Officers
- Chief Risk Officers
- Chief Internal Auditors
- Cyber Security
- IT security/ Information Security
- Controls & Assurance
- Internal Audit
- Risk & Compliance
Attend to learn:
- Clearly defining roles and responsibilities of key personnel & the Board
- Operationalising asset classification
- Conducting third party assessment and monitoring
- Maintain compliance with standard CPS 234
Australian Prudential Regulation Authority (APRA)
Andre Kreicers is Head of APRA’s IT Risk team, comprised of IT risk specialists responsible for assessing the management of IT risk (including cyber security) by APRA-regulated entities. In this capacity, Andre led APRA’s work in consulting on, designing and implementing CPS 234, APRA’s new information security prudential standard. Prior to joining APRA in 2003, Andre had 18 years of financial services experience, and was responsible for delivering and supporting IT solutions for superannuation, investment management and client servicing.
As the former Head of GPI at BNP Paribas CIB Australia and New Zealand, he led the
Security, Operational Risk and Governance teams of the Bank. His career in Financial
Institutions spans over 15 years and two continents, delivering excellence and driving risk
management in Information Technology.
Jean-Baptiste holds a Masters in Computer Science from the University of Belfort-
Montbeliard in France.
Greg has over 30 years in the technology industry in a career that has spanned the globe and encompassed working as a Supplier and a Customer. A financial services specialist he has implemented core system replacements in Asia, the UK, and the United States and has worked on 13 different Financial Services M&A activities.
From an early career in Australian Financial services Greg joined IBM and spent a number of years travelling the world as a Financial Services specialist with his highlight being the lead architect in the growth of a fledgling Minnesota based First Bank systems into the 5th largest bank in the United States, US Bancorp. Since 2000 Greg has worked largely within Australia filling General management and CIO roles at St George Bank, ING Australia, ANZ Bank, and now most recently at RACQ. Greg has a Masters of Management, an MBA, and is a graduate of the Australian Institute of Company Directors. He is married to Ruth and has three sons; Kane, Luke, and Finn.
Wilson Chiu leads Police Bank’s cyber security team. He has nearly 20 years’ experience in Security and have worked in a number of industries including financial, retail, media and outsourcing. Wilson holds a number of certifications including Certified Information Security Manager (CISM), Certified Information System Auditor (CISA) and Certified Information Privacy Manager (CIPM). Currently he is involved in the Open Banking technical working groups and also responded to the draft (now current) APRA CPS234 standard.
Founded in 2003, Shearwater is a specialist Information Security service provider with a presence in all major capital cities of Australia.
We deliver Operational Security Management, Application Security services, Security Education and Incident Response to government organisations and private enterprises. We also help organisations achieve, prove, and maintain compliance with security standards.
Our purpose is to create a safer connected world. This is reflected in our services, which represent an end-to-end defence system against cyber intrusions.
Date: 28 Mar 2019 By: Ash Natesh
APRA has issued a new mandatory regulation, CPS 234 which commences on 1st July 2019. The standard aims to improve the resilience of APRA regulated entities against information security threats. APRA regulated entities will have to go beyond following the practice guide to now demonstrate compliance with the new standard. The CPS 234 is a …
Date: 6 Feb 2019 By: Ash Natesh
Australia has begun its trek towards an Open Banking Regime, but still has a lot to learn from the UK, which is much further down the implementation process. Chris Michael, the Chief Technology Officer with the UK’s Open Banking Implementation Entity (OBIE) spoke with InnovationAus.com about the challenges and the journey the UK is facing …
Date: 6 Feb 2019 By: Ash Natesh
Open Banking regulations are coming into force in jurisdictions around the world, including in the last couple of weeks in Australia, it’s important that Australian bankers understand what it means for them. Is it really going to challenge incumbents the way some say, and make certain business models obsolete? What do people mean when they …
Date: 9 Oct 2018 By: Ash Natesh
The bulk of Australia’s biggest financial institutions have been forced by the prudential regulator to go through an in-depth review of their culture and governance before the royal commission ends next year. After coping heavy criticism over a lack of enforcement strategies in the financial sector, the Australian Prudential Regulation Authority has demanded Westpac, ANZ …