To help you understand your CPS 234 compliance obligations and security methodologies of the standard, Vital Advisory have developed a pair of concise workshops which explain the Information Security and Risk provisions of the standard and how they can be implemented to effect genuine and lasting improvement in your security practice. Workshops are available to be delivered on-premises.

+ Workshop 1 – Introduction to CPS 234
Workshop 1 is a half-day session which clearly explains the structure and elements of CPS 234. Topics covered include:

• Information Security management and frameworks
• CPS 234 objectives and key requirements
• CPS 234 and the ISO27001 standard
• APRA security and risk-related requirements
• Implementation planning
• Assessing Information Security capabilities and gap analysis
• Prioritising security improvements

+ Workshop 2 – CPS 234 and Information Security Masterclass
We continue with a deep dive into Risk Management and Information Security practices used to build and operate an Information Security Management System (ISMS). We examine how an ISMS is the backbone of CPS 234’s approach to achieving maturity in your data protection strategy. Topics include:

• Understanding Information Assets
• Information Risk Management
• Risk Assessment and Treatment
• Assessing security capabilities
• Security Incident Management and Response
• Security awareness and engagement
• Verifying Security – monitoring, audit and conformance
• Ensuring ongoing security improvement
• Managing supplier security
• ISO27001 Certification

+ Experienced Trainers
Our trainers have extensive Information Security careers, particularly in the areas of ISO 27001 certification, risk management, security audit and security strategy. They regularly present multi-day courses on security certification standards, such as CISM and CRISC. Our presenters take the time to understand the business concerns of participants and ensure their questions are addressed – our workshops are interactive exchanges, not one-way info-dumps.