Regulatory Alerts2023-05-29
Guideline on Cyber and Technology Risk Management
The Bank of Mauritius mandates all licensed financial institutions to implement a comprehensive cyber and technology risk management framework commensurate with their size, complexity, and risk profile. The guideline establishes minimum governance standards, including board oversight and CISO appointment, while requiring robust protection controls, third-party risk management, and regular assurance testing aligned with international benchmarks. Effective 29 May 2023, these requirements ensure operational resilience and financial stability by standardizing threat detection, incident response, and continuous security reporting across the sector.
Share