Trinidad and Tobago: Strengthening Cybersecurity in Financial Institutions

Central Bank of Trinidad and Tobago requested for technical assistance to: (i) strengthen the cybersecurity posture of the Central Bank, and (ii) strengthen the cybersecurity of the financial institutions.
READ MORE...
Volume/Issue: Volume 2023 Issue 003
Publication date: April 2023
ISBN: 9798400237836
$5.00
Add to Cart by clicking price of the language and format you'd like to purchase
Available Languages and Formats
Paperback
PDF
ePub
English
Prices in red indicate formats that are not yet available but are forthcoming.
Topics covered in this book

This title contains information about the following subjects. Click on a subject if you would like to see other titles with the same subjects.

Money and Monetary Policy , International - Economics , Cyber risk , Cybersecurity , Identity , Access Management

Summary

This technical assistance report focuses on strengthening cybersecurity in financial institutions in Trinidad and Tobago. Cybersecurity governance at The Central Bank of Trinidad and Tobago (CBTT) is set up according to generally accepted practices with recently updated policies and procedures. Information Technology (IT) governance responsibilities comingled with the second line of defense, resource constraints, information security function reporting to IT function, and less focus on payment systems other than SWIFT were some of the concerns identified by the Mission. The Identity and Access Management (IAM) project is in the preparatory stage, and the project arrangements were comparable to good practices observed elsewhere. CBTT’s regulatory environment on cyber is marked by instructions being part of several guidelines in an indirect way in the absence of a dedicated guidance on the subject. The seminar on cyber risk regulation contributed to building capacity to draft a guideline on the topic. Supervisory practices pertaining to cyber risk need strengthening with focus on addressing resource constraints, conducting regular risk-based onsite examinations, and setting up offsite supervision capabilities. The mission recommendations focused on strengthening the cyber posture of the CBTT as well as the financial institutions supervised by CBTT.