*Places enormous responsibility on board of directors, others

The Central Bank of Nigeria (CBN) yesterday moved to strengthen cyber resilience of Other Financial Institutions (OFIs) under its regulation in order to ensure that they remain safe and sound amidst increase in the number and sophistication of cybersecurity threats and attacks against them.

The move was contained in a circular titled, “Exposure Draft of the Rise-Based Cybersecurity Framework and Guidelines for Other Financial Institutions” which was addressed to all OFIs in the country.

The CBN correspondence dated August 13, 2021, and signed by the Director, OFIs Department, Nkiru Asiegbu, stipulated the minimum requirements for enhancing cybersecurity.

The apex bank explained that the purpose of the guidelines which provides a risk-based approach to managing cybersecurity risk, was to among other things create a safer and more secure cyber environment that supports information system security and promote stability of the OFI sub-sector.

It noted that the safety and soundness of the sub-sector particularly required that they operate in a safe and secure environment.

Hence, it stated that the platform on which information processed and transmitted should be managed in a way that ensures the confidentiality, integrity and availability of information as well as the avoidance of financial loss and reputational risk among others.

Essentially, the document provided for cybersecurity governance and oversight; cybersecurity risk management system; cyber resilience assessment; cyber operational resilience; cyber threat intelligence and metrics monitoring and reporting.

The guidelines also spelt out the responsibilities of the board of directors, senior management and chief information security officer (CISO).

The CBN stated that the board of directors shall ensure that cybersecurity is completely integrated with business functions and as well managed across the OFI.

The board is also to have oversight and overall responsibility for cybersecurity programmes.

In addition, senior management of OFIs be responsible for the implementation of the board approved cybersecurity strategy, policies, standards and the destination of cybersecurity responsibilities among others.

The document also mandated every OFI to appoint or designate a CISO whose responsibilities shall include the day to day cybersecurity activities and the mitigation of cybersecurity risks in the institution.

"Exciting news! TheNigeriaLawyer is now on WhatsApp Channels 🚀 Subscribe today by clicking the link and stay updated with the latest legal insights!" Click here! ....................................................................................................................... Unauthorized use and/or duplication of this material and other digital content on this website, in whole or in part, without express and written permission from TheNigeriaLawyer, is strictly prohibited _________________________________________________________________

 To Register visit https://schoolofadr.com/how-to-enroll/ You can also reach us via email: info@schoolofadr.com or call +234 8053834850 or +234 8034343955. _________________________________________________________________

NIALS' Compendia Series: Your One-Stop Solution For Navigating Nigerian Laws (2004-2023)

Email: info@nials.edu.ng, tugomak@yahoo.co.uk, Contact: For Inquiry and information, kindly contact, NIALS Director of Marketing: +2348074128732, +2348100363602.