Regulatory Alerts2022-12-21
Guidelines on Appropriate Risk Management for Information Systems of Supervised Entities
The Croatian Financial Services Supervisory Agency (Hanfa) issued these Guidelines to establish a systematic framework for identifying, assessing, and mitigating information system risks across supervised financial entities. The document mandates that management boards implement structured organizational measures, including clear resource allocation, defined roles, and continuous staff awareness, to safeguard confidentiality, integrity, and availability of critical data. By aligning IT risk management with core business strategies and enforcing targeted controls—from physical security to incident response—entities can reduce operational vulnerabilities, ensure regulatory compliance, and maintain competitive advantage.
Share