Regulatory Alerts2024-12-27
Decision on Minimum Information-Communication System Management Standards for Financial Institutions
The Executive Board of the National Bank of Serbia issued this Decision to establish minimum standards for the safe management of information-communication systems within Serbian financial institutions. The regulation mandates the implementation of comprehensive ICT risk management frameworks, including regular assessments, defined risk appetites, and robust internal audit procedures. It further requires institutions to maintain strict security policies, ensure business continuity through disaster recovery plans, and report significant ICT risks and incidents to the central bank.
Share