RBI Cyber Security Framework Compliance
What is RBI Compliance?
On June 2, 2016 via notification number RBI/2015-16/418 DBS.CO/CSITE/BC.11/33.01.001/2015-16 Researve Bank of India (RBI) released Cyber Security Framework in Banks in India.
Here RBI suggested that use of technology by banks and users have increased multifold, alongside frequency and impact of cyber incidents / attacks have also increased manifold pertucularly in finance sector.
Notification says, “Banks should immediately put in place a cyber-security policy elucidating the strategy containing an appropriate approach to combat cyber threats given the level of complexity of business and acceptable levels of risk, duly approved by their board”. Also “Cyber Security Policy to be distinct from the broader IT policy / IS Security Policy of a bank”.
- Ensuring Protection of customer information
- Data Leak prevention strategy
- Develop a comprehensive data loss/leakage prevention strategy to safeguard sensitive (including confidential) business and customer data/information.
- This shall include protecting data processed in end point devices, data in transmission, as well as data stored in servers and other digital stores, whether online or offline.
- Similar arrangements need to be ensured at the vendor managed facilities as well.
Along with this, Government of India is planing to introduce its own GDPR: Personal Data Protection Act. PDPA states “right to privacy is a fundamental right” and every entity must protect data in its possession.
For Cyber Security Anti-Malware, Data Backup, Disaster Recovery, Data Leak Prevention, Vulnerability Assessment, Penetration Testing etc is required to be implemented. Everything to be managed by Security Operation Center (SOC). Compliances also need to appoint Data Protection Officer (DPO).
Somansa Data Leak Prevention
Somansa DLP will ensure to provide 100% data leak prevention and compliance to RBI, PDPA and other compliance. Using Somansa Banking and Finance sector companies can
- Discover
- Classify
- Prevent
- Report
across thousands and lacs of endpoints across large geography, multiple branches in a complex network. Fast search, easy operations, robust policies, intuitive dashboard.
To achieve RBI, SEBI, IRDA, Personal Data Protection Bill – PDPA, GDPR, Information Technology Rules, 2013 – ITA, CERT etc; Panzer IT can provide following solutions with complete assistence and support.
| Type | Brand | Description |
|---|---|---|
| Data Leak Prevention | Somansa DLP https://www.somansatech.com/ | – Data DIscovery – Data Classification – Data Leak Prevention – Control of Data Transfer Channels – Detection of Sensitive Data Content – Data Encryption |
| Employee Monitoring | FalconGaze SecureTower https://falcongaze.com/ | – Detailed Employee Monitoring – Reports Based on Gathered Information – Productivity Enhancement – Remote PC Monitoring |
| Advance Anti-Malware, Zero-Day Threat Prevention | Emsisoft Anti Malware https://www.emsisoft.com/en/ | – Next-Gen Anti-Malware Software – The best endpoint security product for ransomware & any other known or unknown threats – Scan traffic and behavior of data – Multi-Layer & dual engine protection – Most popular among geeks and techies across the Globe |
| Vulnerability Assessment & Penetration Testing | SecPoint https://www.secpoint.com/ | – Unparalleled vulnerability management – Robust Pentration Testing – All OS, All Device, Websites, Unlimited Scanning – User Friendly Licenseing |
| Remote Support and Remote Control Solution | Netop Remote Control https://www.netop.com/remotesupport/ | Largest Global Companies use Netop for Remote Connection-Control-Support, be it Banks, Defence, Enterprises |
| Data Security & Insider Threat Detection | Varonis https://www.varonis.com/ | • Data Protection • Threat Detection & Response • Compliance • Data Classification • Ransomware • Insider Threats • External Threats |
| Endpoint Protection Antivirus, Endpoint Security | GData GDatasoftware.com/business/ compare-business-solutions | • Endpoint Security: Firewall | Patches | Signatures | Heuristics • IT Compliance: Policy Management | Antispam • Availability & Performance: Network Monitoring • Server & Gateway Security: Mail Server Security | Proxy Server Security | File Server Security • Reports & IT Audits: Report Manager | Central Management Console • Patch Management: Manage patches – Close vulnerabilities |
| Backup & Disaster Recovery – BDR | Vembu https://www.vembu.com/ | A complete Backup & Disaster Recovery solution for Virtual, Physical, Cloud workloads & SaaS Applications – Feature-Rich Product – Responsive Support – Exceptional Price |
Panzer IT provide detailed demo, POC, installation services, implementation of DLP as per requirement and compliance, training, and post-sales support.