Insights · 6 June 2026
CPS 230: What boards actually need to know
CPS 230 is live. Boards are being asked to confirm they're satisfied that critical operations can recover within tolerance. Most can't. Here are the five questions every APRA-regulated board should be able to answer.
Insights
The three-document digital twin
How SPLITer builds a validated dependency model from an Information Asset Register, Org Chart and APRA MSP Register.
Insights
AI governance is a resilience problem
Why the APRA/ASIC AI governance question and the CPS 230 question are actually the same question — and how one model answers both.
Insights
Supply chain concentration: the risk nobody's mapped
How AZON 360 finds the exposure hiding in your client's MSP Register — and why concentration risk is bigger than most people realise.
Guide
CPS 230 implementation guide for consultancies
A practical guide to delivering CPS 230 compliance engagements with AZON 360. Covers scope, methodology, outputs and APRA submission.
Guide
SOCI Act CI-RMP: a practical guide
Everything you need to create a Critical Infrastructure Risk Management Program — including how AZON 360 automates the dependency mapping stage.
Insights
Why your BCP probably doesn't match your operations
The gap between documented plans and operational reality is almost always larger than expected. Here's what to do about it.
