AGL 40.00 No Change ▼ 0.00 (0%)
AIRLINK 127.04 No Change ▼ 0.00 (0%)
BOP 6.67 No Change ▼ 0.00 (0%)
CNERGY 4.51 No Change ▼ 0.00 (0%)
DCL 8.55 No Change ▼ 0.00 (0%)
DFML 41.44 No Change ▼ 0.00 (0%)
DGKC 86.85 No Change ▼ 0.00 (0%)
FCCL 32.28 No Change ▼ 0.00 (0%)
FFBL 64.80 No Change ▼ 0.00 (0%)
FFL 10.25 No Change ▼ 0.00 (0%)
HUBC 109.57 No Change ▼ 0.00 (0%)
HUMNL 14.68 No Change ▼ 0.00 (0%)
KEL 5.05 No Change ▼ 0.00 (0%)
KOSM 7.46 No Change ▼ 0.00 (0%)
MLCF 41.38 No Change ▼ 0.00 (0%)
NBP 60.41 No Change ▼ 0.00 (0%)
OGDC 190.10 No Change ▼ 0.00 (0%)
PAEL 27.83 No Change ▼ 0.00 (0%)
PIBTL 7.83 No Change ▼ 0.00 (0%)
PPL 150.06 No Change ▼ 0.00 (0%)
PRL 26.88 No Change ▼ 0.00 (0%)
PTC 16.07 No Change ▼ 0.00 (0%)
SEARL 86.00 No Change ▼ 0.00 (0%)
TELE 7.71 No Change ▼ 0.00 (0%)
TOMCL 35.41 No Change ▼ 0.00 (0%)
TPLP 8.12 No Change ▼ 0.00 (0%)
TREET 16.41 No Change ▼ 0.00 (0%)
TRG 53.29 No Change ▼ 0.00 (0%)
UNITY 26.16 No Change ▼ 0.00 (0%)
WTL 1.26 No Change ▼ 0.00 (0%)
BR100 10,010 Increased By 126.5 (1.28%)
BR30 31,023 Increased By 422.5 (1.38%)
KSE100 94,192 Increased By 836.5 (0.9%)
KSE30 29,201 Increased By 270.2 (0.93%)

The State Bank of Pakistan (SBP) has taken a number of steps for information and cyber security improvement and set up new Office of the Chief Information Security Officer (OCISO) to ensure cyber security during the last fiscal year. According to the State Bank's annual performance review, the SBP has revamped its organizational structure according to industry best practices for cyber security and witnessed major improvement in the area of information and cyber security governance within the bank and in order to provide full independence during FY18.
The SBP has established OCISO along with the appointment of CISO and in order to ensure CISO's role in management committees, permanent membership was granted in Enterprise Risk Management Committee, Management Committee on Information Technology and Business Continuity Planning Committee.
Further, to ensure monitoring of cyber threats, OCISO has started monitoring critical security controls protecting the SBP network and systems from different kind of cyber security threats. Further, in order to strengthen the organization structure, Office of the CISO built its team by inducting specialized IT security resources to ensure delivery of key services and functions and organization-wide IT Security Policy covering the complete IT infrastructure of SBP and its subsidiaries was devised.
Moreover, OCISO led the efforts in conducting the first annual SWIFT Customer Security Control (CSP) framework and reviewed SBP's SWIFT security posture.
Based on the monitoring of data from multiple technical controls, OCISO initiated submission of monthly cyber activity reports to senior management. In addition to independent third-party security assessments, OCISO also improved and performed multiple Software Vulnerability Assessments in IT Infrastructure to identify security vulnerabilities in software systems used in SBP and its subsidiaries.
The report said that identified vulnerabilities were shared with IT departments for mitigation and patching purposes to reduce operational risks and OCISO collected and disseminated security advisories from multiple legitimate sources including but not limited to national agencies, OEMs, etc. after thorough analysis during the last fiscal year.
Technical security advisories were shared with IT departments for timely actions and end-user advisories were broadcasted bank-wide for security awareness of all employees.

Copyright Business Recorder, 2018

Comments

Comments are closed.