The guidelines aim to promote the adoption of robust practices for managing technology risks in the financial sector.
By Farhana Sharmeen and Marc Jia Renn Tan
On 18 January 2021, the Monetary Authority of Singapore (the MAS) issued revised guidelines (the Guidelines) to take into account the fast-changing cyber threat landscape and financial institutions’ increased reliance on cloud technologies, application programming interfaces (APIs), and rapid software development. The Guidelines apply to all banks, payment services firms, and brokerage and insurance firms.
The Guidelines, which became effective immediately on the date of issue, aim to support financial institutions by providing them a framework of best practices for overseeing technology risk governance, practices, and controls to address technology and cyber risks. The Guidelines are not meant to be exhaustive or prescriptive, and have incorporated feedback received from the public consultation conducted in 2019.