The concept of risk, unlike that of danger and uncertainty, implies a domain for decision making about the future and a corresponding allocation of responsibility for the that decision
Information security strategy
Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting-SLA
Last post discussed the complication when running multiple bank applications on the same computing platform and need to decided when to report “a relevant incident” within one hour upon discovery. This part will discuss on how this requirement going to affect Services Level Agreements in Singapore banking IT operations. Before this MAS notice come into …
Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting-SLA Read More »
Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting
When attending a PWC Singapore meeting on new MAS guideline, there are many questions in my head regarding how the 1 hour incident reporting requirement could be fulfilled. The requirement requires banks operating in Singapore to report to MAS within one hour when relevant incident ( security breaches and malfunction) is discovered. There are a …
Singapore MAS Tech Risk Guideline (TRM) – Incident Reporting Read More »
Singapore MAS new TRM guideline
Singapore Monetary Authority after one year consultation released a Technology Risk Management Guideline. It is a major overhaul of the last version which was published in 2008. For sure, the banking industry and banking technology changed a lot with the omnipresence of 3G network and mobile devices. As part of my job is to implement …