‹ FinTech INTRODUCTION › Information Technology Risk Management Guidance [20 November 2024] INTRODUCTION Background Structure of the Guidance Applicability Building Effective Control Environments SECTION A: ESTABLISHING A CULTURE OF EFFECTIVE IT RISK MANAGEMENT Chapter 1 – Governance and Oversight Chapter 2 – Risk Management Chapter 3 – Third Party Management Chapter 4 – Compliance and Audit SECTION B: MANAGING AN IT ENVIRONMENT Chapter 5 – System Lifecycle Management Chapter 6 –Technology Asset Management Chapter 7 – Operational Infrastructure Management Chapter 8 – Data Lifecycle Management Chapter 9 – Resilience Chapter 10 – Cyber Event Management SECTION C: INTERACTING SECURELY Chapter 11 – Access Management Chapter 12 – Online Transaction Security Chapter 13 – Cryptography SECTION D: LEVERAGING BUSINESS EMBEDDED TECHNOLOGIES Chapter 14 – Algorithm Driven Solutions Chapter 15 – Decentralised Infrastructure Solutions ANNEX A: RELATED ADGM RULES, REGULATIONS AND GUIDANCE ‹ FinTech INTRODUCTION ›
