Bank Negara (Malaysia)
ASIA PACIFIC | FINANCIAL SERVICES

Bank Negara (Malaysia)

Bank Negara Malaysia, the central bank of Malaysia, is responsible for promoting monetary and financial stability and providing a conducive environment for the sustainable growth of the Malaysian economy. Bank Negara aims to achieve this by developing a sound, resilient, progressive and diversified financial sector which serves to support the economy.

Some of the key BNM regulations for financial institutions (FIs) to consider when outsourcing their information technology activities are:

This policy sets technology risk standards, treating cloud usage as outsourcing. FIs must conduct comprehensive risk assessments before adopting cloud services for critical systems, addressing inherent risks like location and multi-tenancy. FIs must retain ownership, control, and management of customer data and cryptographic keys.

This FAQ supplements the RMiT policy and provides useful explanations for the implementation of the policy.

This policy governs activities performed by third parties, including cloud services. FIs must ensure board accountability, conduct due diligence on the provider’s capability and location. Contracts must grant the regulator access, protect data confidentiality, and establish robust business continuity and exit strategies.

This FAQ supplements the Outsourcing Policy and provides useful explanations for the implementation of the policy.

This framework ensures customer protection in credit transfer services. FIs must securely protect customer data by deploying preventive and detective controls. Non-banking FIs must obtain the Bank’s prior written approval before entering a third-party arrangement for the retention or storage of customer data related to credit transfer services.

This clarification requires non-banking FIs to obtain prior written approval from the Bank to engage third parties for storing sensitive customer data for credit transfer transactions. The FI must ensure the provider's security controls and governance are robust and manage country risk arising from offshore arrangements.

This sets out BNM’s requirements and expectations of financial institutions' measures and controls in handling customer information.

BNM Compliance Offerings

Malaysian Financial Services Regulations: A Guide for Institutions Using Google Cloud

This guide highlights Google Cloud's core commitment to security and compliance and details how our services align with key security and risk considerations typically addressed in the BNM regulations. It provides you with useful information to assist you with understanding how we can support you with meeting the BNM requirements as an outsourced service provider.

Google Cloud’s contracts for financial institutions in Malaysia address Bank Negara’s requirements. Google Cloud is committed to addressing these requirements regardless of how financial institutions choose to use our services.


Take the next step

Start building on Google Cloud with $300 in free credits and 20+ always free products.

Google Cloud
send_spark
    DocsSupport
    Console
    Sign in
    Security
    Threat IntelSecOpsCloud securityConsultingSecurity resources
    • Accelerate your digital transformation
    • Whether your business is early in its journey or well on its way to digital transformation, Google Cloud can help solve your toughest challenges.
    • Google Cloud products
    • Browse over 100 products. New customers get $300 in free credits to run, test, and deploy workloads. All customers can use 25+ products for free, up to monthly usage limits.
    • Save money with our transparent approach to pricing
    • Google Cloud's pay-as-you-go pricing offers automatic savings based on monthly usage and discounted rates for prepaid resources. Contact us today to get a quote.
    Google Cloud