
Explanation:
According to the Basel Committee's guidance on cyber resilience and operational risk, building a robust cyber risk culture requires a holistic approach that includes comprehensive training, clear responsibilities, and an overarching unified risk culture.
Choice A is correct. Continuous cyber training integrated throughout the entire employee lifecycle—from recruitment through termination—ensures that all personnel are aware of the evolving nature of cyber threats. Choice B is correct. Implementing effective processes and controls ensures that all stakeholders, including employees, contractors, and third-party vendors, clearly understand their roles in mitigating risks such as theft, fraud, or the misuse of the institution's IT facilities. Choice C is correct. Establishing a common risk culture aligns the entire organization towards the effective management of cyber-risk, ensuring a unified front against potential vulnerabilities.
Since options A, B, and C represent fundamental elements of enhancing cyber risk awareness and risk culture, Choice D (All of the above) is the correct answer.
Ultimate access to all questions.
No comments yet.
Q.4484 According to the Basel Committee’s report on the regulated institutions, cyber risk awareness and risk culture is enhanced through:
A
Cyber training, incorporated in all phases of employment-recruitment to the termination in a regulated institution
B
Having effective processes and controls that ensure that employees, contractors, and third-party dealers understand their roles and responsibilities in the quest to reduce the risk of theft, fraud, or misuse of the institution’s facilities
C
Establishing a common risk culture to ensure effective cyber-risk management
D
All of the above