// compliance / cps234
CPS 234 Information Security Assessment
AUAPRA CPS 234 | AU
Automated and governance-hybrid assessment against APRA's CPS 234 standard. Built for banks, insurers, and super funds that need to demonstrate compliance.
Single report, no commitment.
Continuous monitoring — fresh report every 30 days.
Available in AUD, USD, GBP, EUR, SGD. MSP partners get volume discounts via the partner programme.
What it scores
6 CPS 234 sections
Capability, Policy, Assets, Controls, Incidents, Testing
Automated technical checks via Microsoft Graph and Defender
Governance questionnaire for board-level controls
Combined score
automated (60%) + questionnaire (40%)
APRA notification obligation assessment
Maps to CPG 234 guidance for remediation
Microsoft APIs
- Microsoft Graph (universal scopes, read-only across the tenant)
- Azure REST (when the product reads Azure subscription posture)
- Defender + Intune APIs where applicable
Customer prerequisites
- Microsoft 365 tenant with admin-consent capability
- Global Reader or equivalent for the consenting admin
- No agent installs, no infrastructure changes required
- Report delivered by email within 10 minutes of consent
Other Compliance
Assess your compliance with the ACSC Essential Eight Maturity Model. Mandatory for Australian Government entities under …
Assess your Azure and Microsoft 365 environment against the Microsoft Cloud Security Benchmark v2 — 14 control domains c…
Assess your Microsoft 365 tenant against the CIS Benchmark — the industry-standard security configuration guide recognis…