斐济共和国：网络风险监管技术援助报告——现场审查指南

REPUBLIC OFFIJI CyberRiskSupervision—OnsiteExaminationGuidance June2026 PreparedByChristopherWilson AuthoringDepartments/Institutions: MonetaryandCapitalMarketsDepartment The contents of this document constitute technical advice provided by the staff of the InternationalMonetary Fund to the authorities of Reserve Bank of Fiji (the "CD recipient") in response to their requestfortechnicalassistance.UnlesstheCDrecipientspecificallyobjectstosuchdisclosure,this document(inwholeor in part)orsummariesthereof maybedisclosedbytheIMFtotheIMFExecutiveDirector forFiji,to other IMF Executive Directors and members of their staff, as well as to other agencies orinstrumentalities of the CD recipient, and upon their request, to World Bank staff, and other technicalassistanceprovidersanddonorswithlegitimateinterest,includingmembersoftheSteeringCommitteeofPFTAC (seeStaff Operational Guidance on the Dissemination of Capacity Development Information).Publicationor Disclosure of this report(in whole or inpart) toparties outsidetheIMF other thanagenciesorinstrumentalitiesoftheCDrecipient,WorldBankstaff,othertechnicalassistanceprovidersanddonorswith legitimate interest,includingmembersofthe SteeringCommittee ofPFTAC, shall requiretheexplicitconsent of the CD recipient and the IMF’s Monetary and Capital Markets department. Theanalysisandpolicyconsiderationsexpressedinthispublicationarethoseof theIMF’sMonetaryandCapital Markets Department. Acknowledgments MEMBERS PARTNERS Contents Acknowledgments.......................................................................................................................................3Glossary.......................................................................................................................................................5Preface..........................................................................................................................................................6ExecutiveSummary....................................................................................................................................7Recommendations.......................................................................................................................................9Introduction................................................................................................................................................10I.InstitutionalBackground.......................................................................................................................11II.Phase1:Pre-ExaminationPreparation...............................................................................................15A.Recommendations..................................................................................................................................15III.Phase2:OnsiteExaminationSessions..............................................................................................16A.Recommendations..................................................................................................................................16IV.Phase3:Post-ExaminationAssessmentandReporting..................................................................17V.Conclusion18A.ConclusionandNextSteps.....................................................................................................................18B.Recommendations..................................................................................................................................18 Tables 1.KeyRecommendations..............................................................................................................................92.ExaminationTimeframe...........................................................................................................................14 Annexes I.ExamplePreExaminationInformationRequestII.Agenda—OnsiteExamination—CybersecurityIII.CybersecurityOnsiteExaminationExampleQuestions Glossary AFRAdvancedFinalReportANZAustraliaNewZealandBankingCorporationBCPBusinessContinuityPlanningBPNGBankofPapuaNewGuineaBSPBankofSouthPacificCGEITCertifiedintheEnterpriseGovernanceofITCISACertifiedInformationSystemAuditorCRISCCertifiedinRiskandInformationSystemsControlCBSCentralBankofSamoaCERTComputeremergencyresponseteamIMFInternationalMonetaryFundPFTACIMFPacificFinancialTechnicalAssistanceCentreRASRiskAppetiteStatementRBFReserveBankofFijiRTOsRecoveryTimeObjectivesTATechnicalAssistance Preface At the request of the Reserve Bank of Fiji (RBF), a Monetary and Capital Markets (MCM) Departmentmission visited Suva, Fijifrom June 5 to June 9, 2023, to assist the authorities in undertaking an onsiteexaminationofcyberrisk.StafffromtheNationalCentralBankofSamoa(CBS)andtheBank ofPapuaNew Guinea (BPNG) also participated in the mission to build capacity across the region. ThemissionmetstafffromtheRBFSupervisionDepartmentincluding:ShanilTotaram,PrernaRam,andSoloilia Kubuabola. The missi