Banking Technology (Established by Reserve Bank of India)
How to Implement RBI Guidelines for
Information Security using
COBIT - 5
April 27-29, 2015
E are glad to announce a Programmeon How to
Implement RBI Guidelines for Information Security using COBIT 5, April 27 29, 2015. We give below summary of the programme. We appreciate your active participation in making your technologies more sustainable.
Introduction: The Reserve Bank of India (RBI) had constituted a working group for Information Security, Electronic Banking, Technology Risk Management and Cyber Frauds in April 2010 under the Chairmanship of Executive Director Shri. Gopalkrishna. The working group recommended many measures to be taken by banks for ensuring/enhancing informationsecurity. The report of the Committee was submitted to the RBI detailing the Guidelines related to Information Security,Electronic Banking, Technology Risk Management and Cyber Frauds. One of the recommendations of the Committee specifically states 'Components of well-known IT control frameworks such as COBIT as applicable to each bank's technology environment may be considered for implementation in a phasedmanner providing a standardized set of terms and definitions that are commonly interpreted by all stakeholders'. COBIT 5, the latest publication from ISACA provides detail guidance for governance and management of enterprise IT. It provides five distinct governance processes and thirty two management processes. Successful implementation of COBIT 5 will thus provide the bank a leading edge in implementation of RBI Guidelines.
Objective
To review Information Technology Governance
(Chapter 1) and Information Security (Chapter 2) of the RBI Guidelines and identify the objectives to be achieved. To explain in detail how COBIT 5 can be used to assist banks to achieve these objectives and deliver value through effective governance and management of enterprise IT. How the seven COBIT 5 enablers can be used effectively by the banks? This will be further illustrated by a case study. How to measure compliance level of implementation by setting goals and monitoring them using various metricssuggested by COBIT 5. How implementation of multiple guidelines across all the RBI Guidelines chapters can be achieved by using the same COBIT 5 enablers and/or processes thus avoid repetition of efforts. How COBIT 5 implementation will help define roles and responsibilities from governance to operational levels?
How banks will benefit by risk optimization and
resource optimization? How banks can assess their process capabilities using the process assessment model (PAM) using COBIT 5? How banks can use COBIT 5 for Assurance for establishing and sustaining assurance provisioning and an assurancefunction for banks?
Contents: Day 1 Module 1: RBI Guidelines Chapter 1 Information Technology Governance Module 2: RBI Guidelines Chapter 2 Information Security Module 3: RBI Guidelines Chapter 7 Business Continuity Planning Chapter 9 Legal Issues Module 4: Introduction to COBIT 5 Day 2 Module 5: COBIT 5 for Information Security Module 6: COBIT 5 for Risk Module 7: Mapping COBIT 5 Processes with RBI Guidelines EDM03 - Ensure Risk Optimisation APO12 Manage Risk Module 8: Mapping COBIT 5 Processes with RBI Guidelines APO12 Manage Security BAI09 Manage Assets Day 3 Module 9: Mapping COBIT 5 Processes with RBI Guidelines DSS04 Manage Continuity DSS05 Manage Security Services Module 10: COBIT 5 for Assurance Module 11: COBIT 5 Process Assessment Model Module 12: COBIT 5 Implementation Participants should download the three ISACA publications free of charge. These will be referred to during the programme. COBIT 5: A business framework for the Governance and Management of Enterprise IT (from www.isaca.org/cobit5 ) Securing Sensitive Personal Data or Information Under India's IT ActUsing COBIT 5 RBI Guidelines Mapping With COBIT 5 Tool kit for RBI Guidelines Mapping with COBIT 5 (excel) (Publications at serial no. 2, 3 and 4 can be downloaded from www.isaca.org/topic-india)
Profile of Participants: This course is recommended for Senior level Officers from banks and the financial sector, who are responsible for I T
implementation, governance, security audit etc.
Faculty: Faculty of IDRBT, Guest Speakers from the Industry & Practitioners.
Fee & Nomination:
The fee for the programme is Rs. 16,500/- + Service Tax 12.36% = Rs. 18,539/- (Rupees Eighteen Thousand Five Hundred and Thirty Nine only) per participant. The fees can be remitted through NEFT (detailed furnished here under). It includes boarding, lodging, training, course material, kit and other infrastructure overheads. The nominations may be sent before April 13, 2015 (email: program@idrbt.ac.in; Fax: 040-2329 4123)
nominations from your Bank/Organization.
1) Name of the Official : 2) Bank : 3) Designation : 4) Official Postal Address : 5) Mobile /Phone No. : 6) Email address : Please depute suitable officials only from your bank / organization for this programme. Please do send us a brief CV/Profile of the official/s nominated (not exceeding one page per person) so that we can fine tune the programme structure, content and delivery. Please inform the nominees of the landmark to locate IDRBT, i.e., Behind NMDC.
The Programme Convener, IDRBT, Castle Hills, Road No. 1
![[IJCST-V5I2P72]:Augustine O. Ugbari, Ikechukwu O. Uche](https://imgv2-1-f.scribdassets.com/img/document/346114601/149x198/ec9e0bf4ce/1493007903?v=1)
