Regulatory Alerts2021-04-18
Control and Awareness Measures for Branch and Customer Service Employees in Banks Operating in the Kingdom
The Saudi Central Bank (SAMA) issued this circular to mandate minimum control and awareness measures for branch and customer service employees in banks operating across the Kingdom. The directive requires financial institutions to implement robust information security policies, enforce strict access controls and password management, monitor employee system usage for at least five years, and conduct periodic awareness campaigns and audits to mitigate operational risks and protect customer data. Banks must align these measures with existing regulatory guides, ensure privileged access is restricted to authorized personnel, and maintain alternative business continuity plans to safeguard against unauthorized data breaches.
Share