Featured Product

    BNM Publishes Policy Document on Risk Management in Technology

    July 18, 2019

    BNM published a policy document that sets out its requirements for the management of technology risk by financial institutions in Malaysia. In line with the proportionality principle, larger and more complex financial institutions are expected to demonstrate risk management practices and controls that are commensurate with the increased technology risk exposure of such institutions. The policy document comes into effect on January 01, 2020.

    All financial institutions shall observe minimum prescribed standards in the policy document to prevent the exploitation of weak links in interconnected networks and systems that may cause detriment to other financial institutions and the wider financial system. The control measures set out in Appendices 1 to 5 serve as a guide for sound practices in defined areas. Financial institutions should be prepared to explain the risk management practices that depart from the control measures outlined in the Appendices and to demonstrate their effectiveness in addressing the technology risk exposure.

    A financial institution must ensure that the technology risk management framework is an integral part of its enterprise risk management framework. The technology risk management framework must include the following:

    • Clear definition of technology risk
    • Clear assignment of responsibilities for the management of technology risk at different levels and across functions, with appropriate governance and reporting arrangements
    • Identification of technology risks to which the financial institution is exposed, including risks from the adoption of new or emerging technology
    • Risk classification of all information assets or systems, based on the "criticality"
    • Risk measurement and assessment approaches and methodologies
    • Risk control and mitigation
    • Continuous monitoring to timely detect and address any material risks

     

    Related Link: Policy Document (PDF)

    Effective Date: January 01, 2020

    Keywords: Asia Pacific, Malaysia, Banking, Insurance, Technology Risk, Governance, Operational Risk, Proportionality, BNM

    Related Articles
    News

    PRA Revises Branch Return and Updates Guidance for Regulatory Reports

    PRA published the policy statement PS17/19, which contains the final policy related to changes in the format and content of the Branch Return Form and reporting guidance.

    September 12, 2019 WebPage Regulatory News
    News

    FINMA Outlines Treatment of Stablecoins in Supplement to Guide on ICO

    FINMA published a supplement to its initial coin offerings (ICOs) guidelines, outlining the treatment for stablecoins under the Swiss supervisory law.

    September 11, 2019 WebPage Regulatory News
    News

    Ursula von der Leyen Presents Structure of Next European Commission

    President-elect Ursula von der Leyen has presented her team and the new structure of the next European Commission.

    September 10, 2019 WebPage Regulatory News
    News

    FED Proposes to Revise and Extend Reporting Form on Systemic Risk

    FED proposed to extend for three years, with revision, the Banking Organization Systemic Risk Report (FR Y-15; OMB No. 7100-0352).

    September 10, 2019 WebPage Regulatory News
    News

    EBA Issues Revised List of Validation Rules for Reporting

    EBA published the revised list of validation rules (version 2.9) in its implementing technical standards on supervisory reporting.

    September 10, 2019 WebPage Regulatory News
    News

    Bundesbank Publishes Supplementary Validation Rules for Reporting

    Bundesbank published the updated document containing supplementary validation rules in the context of the implementation of the reporting system at national level.

    September 10, 2019 WebPage Regulatory News
    News

    APRA Licenses Xinja Bank as Authorized Deposit-Taking Institution

    APRA granted Xinja Bank Limited a license to operate as an authorized deposit-taking institution without restrictions, under the Banking Act 1959.

    September 09, 2019 WebPage Regulatory News
    News

    FDIC Proposes Revisions to Regulations on Interest Rate Restrictions

    FDIC proposed revisions to its regulations covering interest rate restrictions that apply to less than well-capitalized insured depository institutions.

    September 09, 2019 WebPage Regulatory News
    News

    EBA Intends to Clarify End-Treatment of Grandfathered Instruments

    EBA announced its intention to clarify the prudential treatment applicable to own funds instruments at the end of the grandfathering period, which expires on December 31, 2021.

    September 09, 2019 WebPage Regulatory News
    News

    IMF Releases Reports on 2019 Article IV Consultation with Saudi Arabia

    IMF published its staff report and selected issues report in context of the 2019 Article IV consultation with Saudi Arabia.

    September 09, 2019 WebPage Regulatory News
    RESULTS 1 - 10 OF 3799