Publication 
Reference Document One Stop Portal
Waiting...
CIRCULAR: Submission of PayNet’s Independent Assessment Review and BNM’s Cyber Resilience Maturity Assessment (CRMA) and Report
|
|
CIRCULAR |
|
| To | : | All Participants |
| From | : | Cyber Resilience Working Group (CRWG) |
| Date | : | 2 September 2024 |
| Subject | : | Submission of PayNet’s Independent Assessment Review and BNM’s Cyber Resilience Maturity Assessment (CRMA) and Report |
| Product | : | All |
| Reference Number | : | PN-RCD-CO001 |
| Reference Documents | : | Guidelines on Cyber Resilience for Participants of PayNet’s Services (Guidelines), Ref. No.: 200-10/1/0003882 (Version 2.1) |
Dear Valued Participants,
We wish to remind you of the submission of BNM’s CRMA Self-Assessment copy and PayNet Independent
Assessment Review in adherence to the key requirements established in the Guidelines, as follows:
Section 2.0, Cyber Resilience Maturity Assessment (CRMA)
| 2.2 | Participants that have been engaged by BNM for the CRMA are required to submit a copy of their CRMA Self-Assessment Test/Questionnaire in Microsoft Excel version to PayNet by 31 December of the year and BNM’s CRMA Report, when made available by BNM. |
Section 3.0, Independent Assessment and Review
| 3.1 | Participants that are not subjected to the CRMA by BNM shall complete PayNet’s independent assessment and review using the template provided in “Appendix C – Independent Assessment and Review (Version 1.2)” |
| 3.3 | The independent assessment and review report shall be submitted to PayNet annually by 31 December of the year. |
Please ensure that both assessments are completed and submitted by the deadline specified above. Failure to comply with these requirements may result in penalties as outlined in the Guidelines.
Should you require further clarification, please do not hesitate to contact us at crwg@paynet.my .
We appreciate your prompt attention to this matter. Thank you.
Best Regards,
Ken Yon Kian Guan
Senior Director,
Risk & Compliance Division
Restricted Access and Confidentiality Notice
This document and its contents, including any enclosures, are strictly confidential. Participants are hereby notified of their obligation to ensure the following:
Limited Dissemination:
Circulation of this document and its enclosures is restricted to authorized personnel with a legitimate need to know the information contained herein.
Content Protection:
The contents of this document must not be disclosed or discussed with unauthorized individuals.
Documents Retrieval:
To retrieve the documents in this Circular, you are required to sign in to PayNet One Stop Portal ( https://portal.paynet.my ) with PayNet Single Sign-On (SSO). Within the "CIRCULARS" section, you will find the relevant documents associated with this Circular available for download.