Regulatory Alerts2017-08-18 | 634077191GUIDANCE NOTE ON CYBERSECURITY FOR THE BANKING SECTOR
The Central Bank of Kenya issues a Guidance Note on Cybersecurity to licensed institutions, outlining minimum requirements for developing and implementing strategies, policies, and procedures to mitigate cyber risks. The note emphasizes the roles of the board, senior management, and Chief Information Security Officer (CISO) in fostering a security-conscious culture. Institutions should engage external consultants for threat assessments, conduct regular independent tests, and ensure third-party compliance with legal and regulatory frameworks. Training and awareness programs are also recommended. Institutions must submit cybersecurity policies and incident reports to the Central Bank of Kenya.
Tags
governance
infosec
operational
fintech