RBI Deputy Governor R Gandhi has said that companies should thoroughly verify employees and continuously monitor them as part of their cyber security preparedness.
“Most of the cyber frauds have some direct or indirect role of an insider, who generally happens to be an employee of the organisation, which has been the target of the cyber security attack.
There is an urgent need for an organisation to not only perform the antecedent verification of an employee at the time of recruitment, but also continuously monitor employee behaviour, trends in operational usage of the organisational resources, interaction levels with peers and subordinates and the like,” Gandhi said while speaking at the valedictory Session of the 9th Annual Summit ‘Cyber and Network Security’, organised by Assocham along with the Council of Europe, Strasbourg and France.
Companies should also keep IT systems up-to-date and free of all risky components such as viruses, spams, malware, spoofing software and so on, besides providing maximum IT governance and ensuring continued cyber security awareness amongst all players in the chain, Gandhi added.
He hoped that the banking sector will adapt to meet the challenges of cyber security. “The banking sector – similar to other sectors of the Indian economy has always been very responsive to change and has adapted itself very well to meet the challenges which keep emerging frequently,” Gandhi said.
Gandhi said the recent RBI guidelines on Cyber Security Framework in banks are aimed at a focused attention to cyber threats and framework for mitigating the threats and to protect the information assets. He said information dissemination is a key in combating the cyber threat incidents and said the banks also share information about cyber attacks along with suggestions on best practices.