Compliance Framework for RBI master directions for NBFC


Problem Statement

Customer was required to adhere to RBI Master Directions IT Framework for NBFCs before 30th June 2018

Services Delivered

  • Developed Policies, Procedures and supporting forms, templates
  • Developed implementation roadmap and provided Project Management Assistance
  • Conducted a comprehensive risk assessment, identified risks across organization (Business Operations, Facilities, Human Resources, IT etc.) and provided recommendations
  • Reviewed SDLC practices, IT infrastructure setup, regulatory requirements etc. and identified opportunities for improvement
  • Reviewed supplier contracts and established Supplier Governance process
  • Conducted Business Impact Analysis to identify critical services, developed recovery strategies and Business Continuity Plan
  • Developed information security awareness material and conducted training for the Leadership team

Value Provided

  • Developed Business Continuity Plan and Disaster Recovery requirements for Customer’s datacenter which was outsourced
  • Provided the Senior Management visibility into the key information security risks and immediate actions required to address them
  • Provided the customer a Single Repository for Risks with controls mapping to RBI Master Directions IT Framework, ISO 27001, CSA STAR, NIST 800-53, COBIT 5.0
Article Written by CyRAACS Team
crossmenu linkedin facebook pinterest youtube rss twitter instagram facebook-blank rss-blank linkedin-blank pinterest youtube twitter instagram