RBI’s latest guidelines on governance, risk and assurance practices aims to bolster the IT governance and cybersecurity posture of financial institutions. A key component of the directive is the implementation of a robust IT Service Management Framework to support operational resilience including managing third-party risks, project management, change and patch management, and ensuring secure data migration practices. 

CISOs are also required to establish a cyber crisis management plan that will regularly have vulnerability assessments, and penetration testing to mitigate risks. CROs also need to have a business continuity plan and disaster recovery policy to strengthen their institutions’ resilience against IT-related risks.

To achieve this, it is important to align IT strategy with overall business objectives. What are the measures to achieve this? What measures are in place to effectively manage IT and cybersecurity?

How to ensure compliance of third-party risk management with regulatory requirements. For CISOs and CROs, this event will provide actionable insights and expert guidance on meeting the RBI guidelines and strengthening their institutions’ resilience against IT-related risks.