Vietnam banks urged to step up third-party risk management
The Hanoitimes - Most Vietnamese banks are still struggling to comply with the banking authority’s regulations related to digital transformation, particularly those concerning the management of third-party risks.
Digital transformation has given rise to increased outsourcing of operations and services by banks to third-party vendors, leading to growing information security threats. Experts, therefore, urged local banks to step up third-party risk management.
Cost savings are not the only reason why third-party services are on the rise in banking. Beyond that, third-party vendors give banks access to specialist capabilities and technologies that they might not yet be able to build or maintain in-house, said PwC’s experts at a workshop themed “Managing third-party risks under Circular 18” for members of the Vietnam Banks Association (VNBA).
Despite the evident benefits of using third-party providers, the associated risks are not to be ignored. A few years ago, hundreds of customers’ bank statements were stolen from a bank in Singapore, following unauthorised access into a server containing such information on an off-site printing facility. And earlier this year, a data and analytics firm catering to some of the biggest financial institutions in the US failed to secure millions of private financial documents after a major data breach.
|Pho Duc Giang, Cyber Security and Privacy director at PwC Vietnam Cyber Security Services Company.|
On August 21, 2018, the State Bank of Vietnam, the country's central bank, issued Circular No. 18/2018/TT-NHNH to govern the assurance of information systems safety and security in banking operations. However, most local banks are still struggling to comply with the requirements related to digital transformation in the circular, particularly those concerning the management of third-party risks.
“The convenience of tech-enabled financial services has led to an ever-larger and more complex ecosystem of banks, fintechs and related service providers. The adoption of international standards and good practice helps the banks to improve the effectiveness of risk management, including third party risks,” said Nguyen Phi Lan, Partner and Risk Assurance leader at PwC Vietnam.
Sharing experience from Malaysia and the region, Yu Loong Goh, IT Risk Assurance director at PwC Vietnam, said that most high-performing banks in the region are focusing on two main tasks in third-party risk management. First, assessing the current state of their cyber security risk management programme and second, third-party attestation reporting. These provide the basis for banks to come up with measures to address gaps and protect their organisation and clients.
Pho Duc Giang, Cyber Security and Privacy director at PwC Vietnam Cyber Security Services Company added, “third-party attestation can bring many potential benefits, such as improved trust with stakeholders, increased confidence in your own operations, reduced costs and moving towards a sustainable financial services ecosystem.”
- Profit of Vietnam banking sector predicted to grow 22.5% in 2020
- Debt maturity in 2020 – 2021 to put pressure on Vietnam’s state budget
- Vietnam urged to ease market regulation for reclassification as emerging market
- Liquidity in Vietnam stock market predicted to improve in 2020: FiinGroup
- US unlikely to name Vietnam as currency manipulator: Expert
- Gen X and Baby Boomers in Vietnam rapidly catching up with fintech
- Vietnam’s stock market keeps appealing to foreign investors
- Heineken Vietnam asked to pay US$40 million in tax arrears
- How Asia can ride the digital wave to spur financial development?
- Foreign financiers deepens engagement in Vietnamese market
Hanoi expects businesses' greater contributions to agricultural sector: Mayor
Hanoi people to celebrate Tet in cold weather
Foreign investors ready to invest big in Vietnam housing
Debt maturity in 2020 – 2021 to put pressure on Vietnam’s state budget
Bidding farewell to the Kitchen Gods, Vietnamese people offer them red carps
Vietnam targets to have 100,000 digital firms by 2030
Archbishop of Hanoi extends Tet greetings to municipal government
Connectivity to bolster Vietnam’s integration in global markets: WB
Vingroup suspends airline project