Regulatory Alerts2023-01-01
Bank of Zambia Cyber and Information Risk Management Guidelines
The Bank of Zambia has gazetted its Cyber and Information Risk Management Guidelines to establish minimum standards for governing, strategizing, and securing the digital operations of all regulated entities. Adopting an apply-or-explain framework, the circular mandates that larger institutions fully implement these controls while smaller entities must demonstrate equivalent risk mitigation, supported by annual security maturity assessments. Regulated entities must submit their first maturity assessment reports, including methodology and results, to the central bank by September 30, 2023, to ensure resilient and secure-by-design financial technology services.
Share