logotype
RBI Cyber Security Framework for Banks
Home RBI Cyber Security Framework for Banks

RBI Cyber Security Framework for Banks

RNR, as a CERT-In Empaneled Security Auditor, is licensed to assist you in understanding, managing, and complying with RBI Guidelines & Circulars that are issued on a regular basis. The RBI published a new Cyber Security Framework for Banks on June 2, 2016.

An Overview of Cyber Security Framework for Banks

  • Need for a Board approved Cyber-security Policy
  • Cyber Security Policy to be distinct from the broader IT policy / IS Security Policy of a bank
  • Arrangement for continuous surveillance
  • IT architecture should be conducive to security
  • Comprehensively address network and database security
  • Ensuring Protection of customer information
  • Cyber Crisis Management Plan
  • Cyber security preparedness indicators
  • Sharing of information on cyber-security incidents with RBI
  • Supervisory Reporting framework
  • An immediate assessment of gaps in preparedness to be reported to RBI
  • Organisational arrangements
  • Cyber-security awareness among stakeholders / Top Management / Board

What we do

RNR provides, a Comprehensive Cybersecurity Framework (CSF) that can help banks improve their cyber security posture and reduce their risk of being attacked. We have certified Chief Information Security Officer (CISO) who are expert in the field and can deliver services to fit your needs.

Contact us to learn more about the Cyber Security Framework and how RNR can help you comply with RBI’s mandates.

RBI Cyber Security Framework for Banks

As an empanelled security auditor certified by CERT-IN, Security Brigade is authorized to assist you in comprehending, managing, and adhering to the periodic release of RBI guidelines and circulars. On June 2, 2016, RBI introduced a fresh cyber security framework specifically designed for banks.

Leave us message

How May We Help You!

      Service Request Form

      Select Service(s) You Want:

      Information & cyber security program strategy & roadmapEnterprise & cyber security risk assessment & managementThird party risk managementVirtual CISO serviceCyber security awareness programPhishing simulation programThreat modelingUser access governance & certificationIncident management and response planISO 27001/22301/27701/9001RBI master directionNHB cyber security guidelinesIRDAI cyber security guidelinesNIST FrameworkSOC1/SOC2Data localization as per RBI circular of storage of payment system dataCIS frameworkInternal audit managementCloud assessment as per CISDesigning cloud security architectureCSPM security monitoringGap assessment as per applicable guidelinesNetwork architecture reviewFirewall rule reviewFirewall configuration reviewSystem hardening checksVulnerability assessment program managementWeb application penetration testingMobile application penetration testingInfrastructure vulnerability assessmentAPI vulnerability assessmentAPI fuzzingRed teaming ExerciseData protection advisoryData flow diagramDigital personal data protection acData protection controls implementationData discovery and classificationDesigning of data protection policyData governance programDigital personal data protection acGap assessmentArticulation of policy and proceduresISO 27001/22301/27701/9001, PCI-DSS, SOC1/SOC2, COBIT, COSO, HIPPA, RBI, IRDAI, NIST, Data Localization, CISGRC tool implementationArticulation of BCP plan and strategyCrisis management planBCP/DR planning and implementationImplementation of BCMS standard (ISO 22301)Conducting actual and tabletop DR drillsFunctional recovery planGRC resource deployment onsite/offsiteSecurity services resource deployment onsite/offsite

      Contact Details:

      Name (required):

      Organization Name (required):

      Email (required):

      Contact No (required):

      Detail about the requirement (optional):