Skip to Content
Whole SectionText only Print Print Manager Link


AISPs and PISPs must appoint a third party specialist to conduct vulnerability assessments against cyber-attacks and penetration testing on the specific API security standards every 6 months. The specialist's report must be submitted to the CBB, along with the licensee's related action plan to resolve any issues identified. All relevant threat profiles referenced in the security standards including the risk of social engineering must be considered for the reviews.

Added: December 2018
(1 Version)
Dec 1 2018 onwards
Back to top