Abstract:
According to the Bangladesh Bank, every Bank and Financial Institution must have an
ICT Security policy. This report titled “Information Technology Policy for One Bank
Ltd” is aimed to provide a complete guideline for the bank. This policy is designed under
th direct guidelines of Bangladesh Bank Guideline on ICT (Information and
Communication Technology (ICT) Security for Scheduled Banks and Financial
Institutions. This guideline is a systematic approach to policies required to be formulated
for ensuring security of all online activities of the bank and its information system. The
guideline covers all the aspects of the information security related to the banking and
financial activities. The provisions of this Guideline are applicable for:
Information system of all the banks and FIs.
All activities and operations must ensure the security measurement including facility
design, infrastructural and network security, risk ICT risk management and disaster
recovery and business continuity planning, data disposal and various intellectual
property rights.
Regarding to the protection of the informational assets of the organization an inclusive IT
Security Policy must be produced. The authority of the One Bank Limited initiated the
process of development of its own “IT Security Policy”. The One Bank Limited considers
Information as the most precious and important asset of the organization. Which must be
highly secured and safeguarded according to the data protection law. However,
intangibility is not the only uniqueness of the informational asset but without the proper
security measurements this can be easily used unlawfully without depriving the
legitimate owner from its possession. So all aspects of the information security needs to
be in the policy list.
All policies are tested at different stages according to the standards and only when a
policy pass against all standards and proved that it is successful according to the
Bangladesh Banks suggested guidelines then it is implemented.