Notice 644A Technology Risk Management
Requirements on technology risk management for credit card or charge card licensees.
This notice applies to all credit card and charge card licensees in Singapore. It sets out requirements for a high level of reliability, availability and recoverability of critical IT systems, and for credit card and charge card licensees to implement IT controls to protect customer information from unauthorised access or disclosure.
Amendment Notes
There are no amendment notes for this notice.
Related to this Notice
-
CircularsPublished Date: 27 July 2016
SRD TR 01/2016: MAS Circular (Cancellation) 2016
Informs financial institutions that MAS Circular SRD TR01/2011 on Information Technology Outsourcing has been superseded and cancelled by the Guidelines on Outsourcing dated 27 July 2016.
-
CircularsPublished Date: 09 October 2015
SRD TR 03/2015: Technology Risk and Cyber Security Training for Board
Sets out MAS’ expectations on financial institutions to have in place a comprehensive technology risk and cybersecurity training programme for their board of directors and senior management.
-
CircularsPublished Date: 26 September 2014
SRD TR 02/2014 IT Security Risks Posed By Personal Mobile Devices
Reminder to all financial institutions to be cognisant of the heightened security risks associated with the Bring Your Own Device (BYOD) practice.
-
CircularsPublished Date: 21 May 2014
SRD TR 01/2014 System Vulnerability Assessments And Penetration Testing
Guidance to all financial institutions on system vulnerability assessments and penetration testing to check whether systems and data are well protected against any breach or loss.
-
CircularsPublished Date: 21 August 2013
SRD TR 02/2013: MAS Circular (Cancellation) 2013
Informs all financial institutions of the circulars that have been superseded and cancelled by the Technology Risk Management Guidelines dated 21 June 2013.
-
Forms and TemplatesPublished Date: 21 June 2013
Checklist for Technology Risk Management Guidelines
Helps financial institutions evaluate their controls and processes against the relevant sections in the Technology Risk Management Guidelines.
-
Forms and TemplatesPublished Date: 21 June 2013
Incident Reporting Template
Template for financial institutions to report incidents to MAS, including incidents relating to IT systems, cyber security, information loss and liquidity.
-
FAQsPublished Date: 21 June 2013
FAQs - Notice on Technology Risk Management
Frequently asked questions about the notice on Technology Risk Management.
-
Forms and TemplatesPublished Date: 21 June 2013
Instructions on Incident Notification and Reporting to MAS
Provides guidance to financial institutions on the notification and reporting of incidents to MAS as required under the Notice on Technology Risk Management.
-
ConsultationsPublished Date: 13 June 2012
Consultation Paper on Notice on Technology Risk Management
- Consultation number:
- P013 - 2012
- Start date:
- 13 June 2012
- Closing date:
- 16 July 2012
- MAS response date:
- 13 June 2012