The minimum requirements for information security and cybersecurity of commercial banks in the Republic of Uzbekistan have been established through a new regulation. This was reported by Zamin.uz.
This regulation has been registered with the Ministry of Justice and mandates the establishment of a dedicated service within banks and their branches to ensure information security. The main task of this service is to protect the bank's information assets, prevent unauthorized alteration of payment data, and avoid harm to the bank and its clients.
Banks are required to develop and approve their internal policies. Additionally, the database settings in their information systems must be correct and secure.
These measures will help strengthen the information security of banks and effectively combat cyberattacks. Banks must protect against the following risks: unauthorized access to databases, theft of administrator and user passwords, unauthorized access to system files, installation of malicious software, and remote attacks on databases and servers.
Inter-network firewall devices and proxy servers' electronic logs will be under constant monitoring. If an external attack is detected, the Central Bank will be notified immediately.
These measures serve to ensure information security in the country's banks, improve the quality of customer service, and enhance cybersecurity. Source: Zamin.uz
