Each test incorporates cyber and ICT risks, ensuring that both operational and digital threats are addressed. Evidence of proactive risk management — including system failovers, staff readiness, and monitoring controls — ensures that the organization is prepared to handle service disruptions effectively.
|
Sub‑CBS Code |
Sub‑CBS |
Recommended Scenario Test Themes |
Impact / Effect |
Evidence of Proactive Risk Management Action / Integration of Cyber & ICT Risks |
|
1.1 |
Online Banking Login & Authentication |
Simulate MFA outage or credential breach |
Login failures; delayed access |
Redundant MFA channels, SSO failover, and continuous authentication monitoring |
|
1.2 |
Account Dashboard & Balance Inquiry |
Test database replication failure |
Inaccurate balances, delayed inquiries |
Database failover tested, real-time monitoring dashboards, and cyber monitoring of data integrity |
|
1.3 |
Funds Transfer & Payment Services |
Disrupt payment gateway connectivity |
Transaction failures, regulatory breaches |
Payment engine failover drills, alternative routing, DDoS protection, fraud detection monitoring |
|
1.4 |
Mobile App Transaction Processing |
Surge in app traffic or API backend outage |
App crashes, failed transactions |
Auto-scaling microservices, DDoS mitigation, penetration testing, API monitoring |
|
1.5 |
Retail Digital Onboarding |
Third-party identity verification outage |
New account creation blocked |
Backup verification providers, offline KYC processes, secure ICT integration for identity data |
|
1.6 |
Digital Alerts & Notification Services |
Messaging server or telecom outage |
Notifications are delayed or lost |
Redundant alert channels, multi-telecom routing, and continuous ICT monitoring |
|
1.7 |
Customer Support & Chatbot Interface |
Chatbot service offline or cyber compromise |
Increased support call volume, delayed response |
Human support failover, AI redundancy, secure ICT monitoring of chatbot platform |
|
1.8 |
API Gateway & Third-Party Integrations |
Third-party API downtime or compromise |
Partner services disrupted, delayed transactions |
API failover drills, SLA enforcement, and continuous cybersecurity monitoring of API traffic |
|
1.9 |
Access Monitoring & Security Event Logging |
SIEM platform failure or log corruption |
Reduced visibility for incident response |
Redundant logging, off-site event storage, and SOC cyber threat intelligence feeds |
|
1.10 |
Back-End Data Synchronisation & Recovery |
DR site unavailability or replication failure |
Data loss, extended downtime |
DR plan testing, cloud replication, and ICT system integration for continuous data sync and recovery |
Scenario testing for Retail & Digital Banking Access enables CIMB Bank to validate resilience plans against severe but plausible events, ensuring continuity and compliance with regulatory standards. By incorporating cyber and ICT risks into each test, the bank can anticipate technology-driven disruptions, identify gaps in processes, and verify the effectiveness of recovery strategies.
Documented evidence of proactive risk management — such as redundant systems, failover protocols, and monitoring controls — reinforces operational readiness, strengthens stakeholder confidence, and supports a culture of continuous improvement in operational resilience.
|
Operational Resilience in Practice: The CIMB Bank Approach |
|||||
| eBook 3: Starting Your OR Implementation |
|||||
| CBS-1 Retail & Digital Banking Access | |||||
| CBS-1 DP | CBS-1 MD | CBS-1 MPR | CBS-1 ITo | CBS-1 SuPS | CBS-1 ST |
For organisations looking to accelerate their journey, BCM Institute’s training and certification programs, including the OR-5000 Operational Resilience Expert Implementer course, provide in-depth insights and practical toolkits for effectively embedding this model.
Gain Competency: For organisations looking to accelerate their journey, BCM Institute’s training and certification programs, including the OR-5000 Operational Resilience Expert Implementer course, provide in-depth insights and practical toolkits for effectively embedding this model.
To learn more about the course and schedule, click the buttons below for the [OR-3] OR-300 Operational Resilience Implementer course and the [OR-5] OR-5000 Operational Resilience Expert Implementer course.
|
If you have any questions, click to contact us. |
||
|
|