2024-09-27
Added · Updated
The Hong Kong Monetary Authority issued this circular to address technology risk management for all authorized institutions regarding third-party IT solutions. The document establishes supervisory expectations for managing risks associated with the use of external IT services and providers. It aims to ensure that institutions maintain robust governance and oversight over their third-party IT dependencies to mitigate operational and security threats.
CIR
Current
Issue Date:
27 Sep 2024
20241028-10-EN.pdf (491.6 KB)
Topic:
Technology Risk Management - Others
Group:
All Authorized Institutions
Directly related Document
Cross referenced Document
Version History
Superseded Document
Directly related Document
CIR
Current
27 Sep 2024
Risk Associated with Third-party IT Solutions
CIR
Current
27 Sep 2024
Risk Associated with Third-party IT Solutions
Cross referenced Document
Version History
Superseded Document
You may also be interested in
CIR
Current
16 Apr 2024
Risk management considerations related to the use of distributed ledger technology
CIR
Current
24 Jun 2003
Supervisory Policy Manual ("SPM") TM-G-1: General Principles for Technology Risk Management
CIR
Current
10 Oct 2025
Cross-boundary Data Validation Platform