Featured Product

    BNM Publishes Policy Document on Risk Management in Technology

    July 18, 2019

    BNM published a policy document that sets out its requirements for the management of technology risk by financial institutions in Malaysia. In line with the proportionality principle, larger and more complex financial institutions are expected to demonstrate risk management practices and controls that are commensurate with the increased technology risk exposure of such institutions. The policy document comes into effect on January 01, 2020.

    All financial institutions shall observe minimum prescribed standards in the policy document to prevent the exploitation of weak links in interconnected networks and systems that may cause detriment to other financial institutions and the wider financial system. The control measures set out in Appendices 1 to 5 serve as a guide for sound practices in defined areas. Financial institutions should be prepared to explain the risk management practices that depart from the control measures outlined in the Appendices and to demonstrate their effectiveness in addressing the technology risk exposure.

    A financial institution must ensure that the technology risk management framework is an integral part of its enterprise risk management framework. The technology risk management framework must include the following:

    • Clear definition of technology risk
    • Clear assignment of responsibilities for the management of technology risk at different levels and across functions, with appropriate governance and reporting arrangements
    • Identification of technology risks to which the financial institution is exposed, including risks from the adoption of new or emerging technology
    • Risk classification of all information assets or systems, based on the "criticality"
    • Risk measurement and assessment approaches and methodologies
    • Risk control and mitigation
    • Continuous monitoring to timely detect and address any material risks

     

    Related Link: Policy Document (PDF)

    Effective Date: January 01, 2020

    Keywords: Asia Pacific, Malaysia, Banking, Insurance, Technology Risk, Governance, Operational Risk, Proportionality, BNM

    Related Articles
    News

    FSB Sets Out Effective Practices for Cyber Incident Recovery

    FSB finalized the toolkit of effective practices to assist financial institutions in their cyber incident response and recovery activities.

    October 19, 2020 WebPage Regulatory News
    News

    HKMA Urges Early Action for Adherence to IBOR Fallbacks Protocol

    HKMA urged authorized institutions to take early action to adhere to the IBOR Fallbacks Protocol, which ISDA is expected to publish soon.

    October 16, 2020 WebPage Regulatory News
    News

    FSB Sets Out Roadmap for Transition to Alternative Reference Rates

    FSB published a global transition roadmap for London Inter-bank Offered Rate (LIBOR).

    October 16, 2020 WebPage Regulatory News
    News

    HM Treasury Publishes Response to Proposal on BRRD2 Transposition

    HM Treasury published a document that summarizes the responses received from a consultation on the approach of UK to transposition of the revised Bank Resolution and Recovery Directive (BRRD2).

    October 15, 2020 WebPage Regulatory News
    News

    HM Treasury Publishes Response to Proposal on CRD5 Transposition

    HM Treasury published the government response to the feedback received on the consultation for updating the prudential regime of UK before the end of the Brexit transition period.

    October 15, 2020 WebPage Regulatory News
    News

    BoE Publishes Reporting Schedule for Statistical Returns

    In a recent statistical notice, BoE announced publication of the reporting schedule for statistical returns for 2021.

    October 15, 2020 WebPage Regulatory News
    News

    EC Welcomes Declaration by Member States on EU Cloud Federation

    EC welcomed the joint declaration by 25 EU member states on building the next generation of cloud in Europe.

    October 15, 2020 WebPage Regulatory News
    News

    PRA Updates Supervisory Statement on Counterparty Credit Risk

    PRA published the final policy statement PS22/20, which contains the updated supervisory statement SS12/13 on counterparty credit risk.

    October 14, 2020 WebPage Regulatory News
    News

    FSB Publishes Update on Work to Address Market Fragmentation

    FSB published an update on its work to address market fragmentation. FSB is working in this area in collaboration with the other standard-setting bodies.

    October 14, 2020 WebPage Regulatory News
    News

    EBA Proposes to Revise Guidelines on Incident Reporting Under PSD2

    EBA proposed revisions to the guidelines on major incident reporting under the second Payment Service Directive (PSD2).

    October 14, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 5967