Implementation of operational reliability requirements

Go back

To ensure the continuity of banking and financial services, credit institutions must implement and continuously improve regulatory requirements for operational reliability established by Bank of Russia Regulation No. 787-P dated 12 January 2022 and Bank of Russia Regulation No. 779-P dated 15 November 2021. These requirements must be integrated into operational risk, information security risk, and IT systems risk management procedures.

FBK assists credit institutions in developing and executing implementation plans for the National Standards GOST R 57580.3–2022 and GOST R 57580.4–2022, as well as embedding operational reliability measures into the operational risk management system and cyber risk management procedures. This work aligns with the Bank of Russia’s methodological recommendations No. 18-MR dated 20 December 2023 and No. 7-MR dated 21 March 2024.

The scope of services for implementing operational reliability requirements may include:

Establishing procedures for documenting critical architecture and describing information infrastructure components.
Creating a register of IT suppliers.
Developing measures to comply with Bank of Russia requirements for managing information threats related to critical architecture and IT supplier interactions.
Designing a methodology to set thresholds for operational reliability targets and monitor them.
Defining procedures for identifying, logging operational reliability incidents, and implementing response measures.
Integrating operational reliability measures into the operational risk management and information security risk framework.
Assessing the credit institution’s readiness to meet Bank of Russia compliance levels:
- operational reliability protection level (GOST R 57580.4–2022);
- information security risk management level (GOST R 57580.3–2022).
Drafting an implementation plan for GOST R 57580.3–2022 and GOST R 57580.4–2022, including the choice and application of organisational and technical measures to achieve required protection levels.

Upon completing the operational reliability implementation at a credit institution, the client receives:

Implementation Plan for GOST R 57580.3–2022 and GOST R 57580.4–2022.
FBK expert recommendations for managing information threat risks and increasing operational reliability.
Minimised regulatory risk.
Improved maturity of the information security system, ensuring continuity of critical processes and protection of critical architecture against cyber threats.
Proposals to enhance operational risk management and business continuity.

Our advantages

Expertise

FBK experts have a proven track record in developing operational risk management policies and procedures for credit and non-credit financial institutions of varying scales, nature, and specialications. This includes expertise in addressing operational risk holistically, as well as specific risks related to IT systems and information security.

Individual Approach

FBK’s opinions and recommendations are tailored to factors such as the type, scale, and nature of operations, the institution’s sensitivity to external factors, and the target maturity level of the processes under consideration.

Expert Team

FBK experts possess hands-on knowledge of the intricacies of diverse business processes within financial organisations, coupled with extensive experience in their integration and optimisation.

Key Persons

Alexey Terekhov

Managing Partner, Financial Services Industry

With this service, you can also order

Implementation of GOST R 57580.3-2022 / GOST R 57580.4-2022 and Bank of Russia Methodological Recommendations No. 7-MR

Risk and capital management assessment and optimisation

Internal control and internal audit assessment