Regulatory Alerts2025-08-29
Regulation on Information Systems and Cyber Risk Management
The Central Bank of the Republic of Kosovo has issued this regulation to establish minimum standards and procedures for information technology and cyber risk management across all licensed financial institutions. The framework mandates comprehensive governance structures, robust risk assessment processes, and stringent controls for third-party providers, cloud computing, and artificial intelligence applications. Financial institutions must implement continuous security operations, timely incident reporting to the regulator, and independent audits while applying proportionality based on their operational complexity.
Share