As reported in our blog earlier this year MAS guidelines are set to change the way financial institutions conduct business in Singapore.
Now, nearly four months past the compliance date of July 2014, we are revisiting the guidelines that surround the regulations. Non-compliance was said to result in the following implications for financial institutions:
- Financial penalties
- Reputational damage
- Revocation of licence to operate in Singapore
How many have fallen fowl of the penalties to date? We aren’t sure, but what we do know is if you are late in meeting the TRM Guidelines how BeyondTrust can help.
The TRM Guidelines specify technology processes and controls that financial institutions should implement in a range of functional areas, including risk management oversight and framework, system reliability, availability and recoverability, access control, provision of online services and payment mechanisms. The guidelines are broad and detailed—to a level previously only seen in the PCI DSS industry standards.
BeyondTrust offers an integrated IT Risk Management Platform that helps financial institutions in their compliance efforts across two key areas:
- Privileged account management to enforce least-privilege best practices and provide the access employees need to perform their jobs safely, without obstructing IT or end-user productivity
- Vulnerability management to identify exposures, analyse business impact, and plan and conduct remediation across diverse IT infrastructure
BeyondTrust in partnership with Bloor Research Analysts’ Fran Howarth have prepared BeyondTrust’s MAS TRM solution overview applicable to financial institutions worldwide. This document will provide you with a high level overview of everything you need to know about becoming MAS Compliant.
Morey J. Haber, Chief Security Advisor
Morey J. Haber is the Chief Security Advisor at BeyondTrust. As the Chief Security Advisor, Morey is the lead identity and technical evangelist at BeyondTrust. He has more than 25 years of IT industry experience and has authored four books: Privileged Attack Vectors, Asset Attack Vectors, Identity Attack Vectors, and Cloud Attack Vectors. Morey has previously served as BeyondTrust’s Chief Security Officer, Chief Technology, and Vice President of Product Management during his nearly 12 year tenure. In 2020, Morey was elected to the Identity Defined Security Alliance (IDSA) Executive Advisory Board, assisting the corporate community with identity security best practices. He originally joined BeyondTrust in 2012 as a part of the acquisition of eEye Digital Security, where he served as a Product Owner and Solutions Engineer, since 2004. Prior to eEye, he was Beta Development Manager for Computer Associates, Inc. He began his career as Reliability and Maintainability Engineer for a government contractor building flight and training simulators. Morey earned a Bachelor of Science degree in Electrical Engineering from the State University of New York at Stony Brook.