The Monetary Authority of Singapore (MAS) published new Technology Risk Management (TRM) Guidelines in June 2013. The TRM Guidelines set out risk management principles and best practice standards to guide financial institutions in establishing a sound and robust technology risk management framework; strengthening system security, reliability, resiliency, and recoverability; and deploying strong authentication to protect customer data, transactions, and systems. The objective of the Guidelines is to promote the adoption of sound practices and processes for managing technology.
The MAS TRM Guidelines report provides a high-level overview of information relevant to specific sections in the TRM Guidelines. The applicable sections of the TRM Guidelines are noted for each component in the report.
The report is available in the SecurityCenter app feed, an app store of dashboards, reports, and assets. The report can be easily located in the SecurityCenter Feed by selecting category Compliance & Configuration Assessment, and then selecting tag trmg. The report requirements are:
- SecurityCenter 4.8
- Nessus 5.2.6
- LCE 4.2.2
- PVS 4.0.2
- LCE Client - Tenable NetFlow Monitor
For the related SecurityCenter dashboard, see the MAS TRM Guidelines dashboard. Additional explanation of the dashboard is provided in SecurityCenter Dashboard for the Monetary Authority of Singapore’s Technology Risk Management Guidelines; this document may be helpful as well for users of the MAS TRM Guidelines report.