Reporting to CBB
RM-3.1.58
Upon occurrence or detection of any cyber security incident, whether internal or external, that compromises customer information or disrupts critical services that affect operations,
licensees must contact the CBB, immediately (within one hour), on 17547477 and submit Section A of the Cyber Security Incident Report (Appendix RM-1) to CBB’s cyber incident reporting email, incident.Moneychanger@cbb.gov.bh, within two hours.Amended: April 2022
Added: January 2022RM-3.1.59
Following the submission referred to in Paragraph RM-3.1.58, the
licensee must submit to CBB Section B of the Cyber Security Incident Report (Appendix RM-1) within 10 calendar days of the occurrence of the cyber security incident.Licensees must include all relevant details in the report, including the full root cause analysis of the cyber security incident, its impact on the business operations and customers, and all measures taken by the licensee to stop the attack, mitigate its impact and to ensure that similar events do not recur. In addition, a weekly progress update must be submitted to CBB until the incident is fully resolved.Amended: April 2022
Added: January 2022RM-3.1.60
With regards to the submission requirement mentioned in Paragraph RM-3.1.59, the licensee should submit the report with as much information as possible even if all the details have not been obtained yet.
Added: January 2022RM-3.1.61
The penetration testing report as per Paragraph RM-3.1.29, along with the steps taken to mitigate the risks must be maintained by the
licensee for a five year period from the date of the report and must be provided to CBB within three months following the end of the month where the testing took place, i.e. for a June test, the report must be submitted at the latest by 30th September and for a December test, by 31st March.Amended: April 2022
Added: January 2022
