В зависимости от категории кредитной организации и степени зрелости системы управления рисками, требования Положения к системе управления ОР будут разными:
- Banks with universal license, assets over 500 bln rubles
- Banks with universal license, assets under 500 bln rubles
- Banks with basic license
- Non-bank credit institutions (NCI)
However, compliance projects for them will follow a certain scenario:
Compliance with the requirements of 716-P is demanding work with a vast mix of competences in risk management, IT and IS
What's needed is enhancing IT infrastructure reliability, assessing the adequacy of protection solutions used against potential losses, description of business processes supported by the IT infrastructure and protected with certain security solutions.
In order to cover the requirements, one would need a team experienced in a vast mix of competence fields and willing to dive deep into the operations of various departments.
I.e., a team knowledgeable and experienced in the following fields: