OM-A.3.3
Past version: Effective from 01 Oct 2015 to 31 Mar 2016
To view other versions open the versions tab on the right
The most recent changes made to this Module are detailed in the table below:
Summary of Changes
| Module Ref. | Change Date | Description of Changes |
| OM-5.1 | 01/04/05 | Physical security measures. |
| OM-4.2 | 01/10/05 | Succession planning for locally incorporated banks. |
| OM-5.1 | 01/10/05 | Clarification of security manager role for smaller banks. |
| OM-B & OM-1.2 | 01/04/06 | Minor amendments concerning roles of Board and management. |
| OM-5.1.15-OM-5.1.24 | 01/04/06 | New security requirements for ATM security arrangements and reporting of security related complaints. |
| OM-A.2.1-OM-A.2.6 | 01/10/07 | Purpose (expanded) |
| OM-A.2.1-OM-A.2.6 | 01/10/07 | Key Requirements (deleted) |
| OM-2.1-2.2&2.4 | 01/10/07 | Relocation of Succession Planning Requirements from OM-4 |
| OM-5.1-OM-5.9 | 01/10/07 | Business Continuity Planning (expanded) |
| OM-7 | 01/10/07 | New Books and Records Chapter transferred from Module GR |
| OM-8 | 01/04/08 | Basel II Qualitative Operational Risk Requirements |
| OM | 01/2011 | Various minor amendments to ensure consistency in CBB Rulebook. |
| OM-A.1.3 and OM-A.1.4 | 01/2011 | Clarified legal basis. |
| OM-7.1.4 | 04/2011 | This paragraph was deleted as Ministerial Order 23 does not apply to CBB licensees. |
| OM-7.3.4 | 04/2011 | Clarified retention period of records for promotional schemes. |
| OM | 07/2011 | Various minor amendments to clarify Rules and have consistent language. |
| OM-2.4 | 07/2011 | Amended CBB reporting requirements regarding succession planning. |
| OM-3.1.7 | 07/2011 | Paragraph deleted as no longer applicable since standard conditions and licensing criteria document has now been incorporated as part of Volume 1. |
| OM-6.2 | 10/2011 | Added new Section on internet security. |
| OM-7.1.7 | 10/2011 | Corrected typo. |
| OM-A.1.3 | 01/2012 | Updated legal basis. |
| OM-2.1.4 | 01/2012 | Corrected cross reference. |
| OM-3.2.2 | 04/2012 | Deleted last sentence of Paragraph as it repeats the requirement under Paragraph OM-3.3.1 |
| OM-6.2.2 | 04/2012 | Clarified penetration testing interval for internet security. |
| OM-1.1.4 | 10/2012 | Amended to reflect updated version of Basel Committee document. |
| OM-3.2.6, OM-5.2.1, OM-5.4.8, OM-8 | 10/2012 | Amended to reflect the Basel June 2011 paper on Principles for the Sound Management of Operational Risk. |
| OM-6.2 | 07/2013 | Amended reporting requirements related to internet security measures. |
| OM-6.2.1 | 10/2013 | Amended Rule to apply to all banks. |
| OM-3.7.2 | 10/2015 | Clarified Rule on internal audit outsourcing. |