Regulatory Alerts2022-06-13
Directive 362—Cloud Computing
The Supervisor of Banks issued Directive 362 to regulate the use of cloud computing by banking corporations, addressing operational risks associated with information security, cyber defense, and business continuity. The directive mandates strict corporate governance, requiring boards to approve cloud policies and senior management to implement risk assessments and multi-year work plans. It further imposes specific obligations for material cloud services, including rigorous due diligence, detailed contractual requirements, and compliance with information security and business continuity standards.
Share