On Aug. 28, RUS CB recommended methodology for security risk.
RUS CB published methodological recommendations on establishing target values and calculating actual values of quantitive control indicators of the level of information security risk associated with the transfer of funds without the voluntary consent of the client and associated with the conclusion of credit agreements without the voluntary consent of the client, as well as establishing threshold values and calculating actual values of key indicators of information security risk.
Summary
The methodological recommendations were developed to ensure unity of approaches to: establishing threshold values and calculating actual values of quantitative indicators to measure and control information security risk at a specific point in time.
Also, establishing target values and calculating actual values of quantitative control indicators for information security risk related to unauthorized money transfers.
Including those made without the client's consent or with consent obtained via deception or abuse of trust, and related to entering into loan without client consent.
Effectiveness
The methodological recommendations enter into force on Oct. 22, 2024 which is the date of entry into force of ord 6471-U on payment system infrastructure, #199050.