The three-points directive issued by Nepal Rastra Bank
1. Licensed banks and financial institutions can also access their websites, mobile apps, official social networks and information technology systems, such as Cyber Attack, Malware Virus, Ransomware, through external risk, Spam, Phishing, Spoofing, etc., or unauthorized access to the system. and Theft) and the need to minimize the risk of financial theft, including damage to the Denial of Service, including blocking access to official services, Perimeter Defense, Access Provision of technical capabilities like Control, Encryption, Antivirus, Firewall, etc., and updating, exchanging information, ordering payments, and checking the integrity of the systems which are implemented in the service flow.
2. Arrangement of Regular Monitoring and Reporting and arrangement of information of Incident and Attack to the concerned body in case of attempts to misuse the system used by some unrelated persons and places including fake correspondence and payment orders.
3. Preparing Preventive, Detective and Responsive IT Security Strategy of systems operating in licensed banks and financial institutions and auditing the security of IT systems and addressing the problems immediately observed, proactively managing and staffing in accordance with International Best Practices. And make periodic arrangements for Awareness and Capacity Development in addition to the Nu, arrangements will be made to provide immediate assistance in the event of cybersecurity as per the Information Technology Emergency Assistance Group (Operations and Management) Directory, approved by the Government of Nepal, Council of Ministers.