BOT published a notification on the regulations on information technology risk of financial institutions and the guidelines on risk management from third-parties. The notification is effective from November 15, 2019. The notification shall apply to commercial banks registered in the country, commercial banks registered in foreign countries, credit foncier companies, and finance companies. The key points in the notification include that domestic systemically important banks (D-SIBs) and financial institutions that have a high level of cyber inherent risk must have a senior executive responsible to manage information technology security of financial institutions (Chief Information Security Officer: CISO). Commercial banks must report significant information technology projects for the year to BOT.
Related Link (in Thai): Notification
Effective Date: November 15, 2019
Keywords: Asia Pacific, Thailand, Banking, Cyber Risk, Governance, Third-party Arrangements, Fintech, D-SIBs, Operational Risk, Systemic Risk, BOT
Sam leads the quantitative research team within the CreditEdge™ research group. In this role, he develops novel risk and forecasting solutions for financial institutions while providing thought leadership on related trends in global financial markets.
Previous ArticleAPRA Finalizes Reporting Standard for Data Collection on Derivatives
BCBS amended the guidelines on sound management of risks related to money laundering and financing of terrorism (ML/FT).
US Agencies (Farm Credit Administration, FDIC, FED, FHFA, and OCC) finalized changes to the swap margin rule to facilitate implementation of prudent risk management strategies at banks and other entities with significant swap activities.
PRA published a letter that builds on the expectations set out in the supervisory statement (SS3/19) on enhancing banks' and insurers' approaches to managing the financial risks from climate change.
EBA finalized the guidelines on treatment of structural foreign-exchange (FX) positions under Article 352(2) of the Capital Requirements Regulation (CRR).
FSB published a statement on the impact of COVID-19 pandemic on global benchmark transition.
IAIS published the list of Internationally Active Insurance Groups (IAIGs) publicly disclosed by group-wide supervisors.
FED has temporarily revised the reporting form on consolidated financial statements for holding companies (FR Y-9C; OMB No. 7100-0128).
EC launched a consultation on the review of the key elements of Solvency II Directive, with the comment period ending on October 21, 2020.
ECB launched a consultation on the guide that sets out supervisory approach to consolidation projects in the banking sector.
IAIS published technical specifications, questionnaires, and templates for 2020 Insurance Capital Standard (ICS) and Aggregation Method data collections.