Alignment
Obligations, evidence requirements, and control expectations by framework
High-level framework summaries — showing which regulatory obligations each pack covers, the themes they map to, and their suggested use cases. For clause-level detail and specific evidence requirements, see Regulators.
3
Frameworks
18
Obligations
5
Linked Themes
3
Jurisdictions
APRA CPS 230 Operational Risk Management Alignment Pack
APRA Prudential Standard CPS 230 Operational Risk Management
6
Obligations
2
Themes
APRA Prudential Standard CPS 230, effective 1 July 2025 (with transitional arrangements for service provider arrangements until 1 July 2026), consolidates and s…
EU DORA Digital Operational Resilience Alignment Pack
Regulation (EU) 2022/2554 on Digital Operational Resilience for the Financial Sector
6
Obligations
2
Themes
The Digital Operational Resilience Act (DORA), which became fully applicable on 17 January 2025, establishes a unified, directly-binding ICT risk management reg…
PRA SS1/23 Model Risk Management Principles Alignment Pack
PRA Supervisory Statement SS1/23 — Model Risk Management Principles for Banks
6
Obligations
1
Themes
PRA Supervisory Statement SS1/23, effective 17 May 2024, establishes the UK's first comprehensive cross-cutting expectations for model risk management (MRM) at…