RUS CB Security Risk Methodology


On Aug. 28, RUS CB recommended methodology for security risk.


  • RUS CB published methodological recommendations on establishing target values and calculating actual values of quantitive control indicators of the level of information security risk associated with the transfer of funds without the voluntary consent of the client and associated with the conclusion of credit agreements without the voluntary consent of the client, as well as establishing threshold values and calculating actual values of key indicators of information security risk.
  • Summary
  • The methodological recommendations were developed to ensure unity of approaches to: establishing threshold values and calculating actual values of quantitative indicators to measure and control information security risk at a specific point in time.
  • Also, establishing target values and calculating actual values of quantitative control indicators for information security risk related to unauthorized money transfers.
  • Including those made without the client's consent or with consent obtained via deception or abuse of trust, and related to entering into loan without client consent.
  • Effectiveness
  • The methodological recommendations enter into force on Oct. 22, 2024 which is the date of entry into force of ord 6471-U on payment system infrastructure, #199050.

Regulators RUS CB
Entity Types Bank; CNSM; MSB
Reference PR, 8/28/2024; Gd 13_MR, 8/20/2024
Functions BCS; Client Money; Compliance; Cyber; Financial; Legal; Reporting; Risk; Technology; Treasury
Countries Russia
Category
State
Products Banking; Payments
Regions EMEA
Rule Type Final
Rule Date 8/28/2024
Effective Date 10/22/2024
Rule Id 224259
Linked to Rule :199050
Reg. Last Update 8/28/2024
Report Section International

Last substantive update on 09/02/2024