Demo Free trial Request quote Contact me


Risk Management in Technology is a new policy from Bank Negara in Malaysia related to the Malaysian market.

RMiT comes into effect 2020 & applies to financial institutions

Bank Negara Malaysia issued the Risk Management in Technology policy document (RMiT) on July 18, 2019, which sets out Bank Negara’s requirements regarding financial institutions’ management of technology risk.

The new policy will come into effect on January 1, 2020 and covers the implementation of a comprehensive technology risk management framework. The policy applies regardless if the financial institution operates the data center themselves or if they are working with an outsourcing partner.

Our solution

The table below is a high-level summary of how we help your organization meet the RMiT security-related challenges. To get further details please download our PDF document for RMiT.

Patch and end-of-life system management.Network Scanning, Web Application Scanning and reporting.
Holm Security VMP can provide crucial information regarding patch information, EOL, and security vulnerabilities in network systems and web applications.
Cyber risk management.Network Scanning, Web Application Scanning and Asset Management.Holm Security VMP can assist in understanding of the overall cyber security risk by continuous scans of the environment as well as current and future risks.
Cyber security operations.Network Scanning, Web Application Scanning, remediation management and reporting.Holm Security VMP scans the following in the cyber-attack life cycle:  
  • Reconnaissance
  • Weaponization
  • Delivery
  • Exploitation
  • Installation
  • Command and control

Security Operations Center (SOC).Platform API.Holm Security VMP is a vulnerability management tool built to integrate with SOC’s as well as other protection systems.
Cyber response and recovery.Scan Scheduling, platform API and reporting.Holm Security VMP allows for automated procedures following the requirements in order to easy the process of governance of critical infrastructure, clear reporting of known threats as well as fixed cyber security risks. Escalation procedures can be automated and integrated.
Internal awareness and training.Fraud Risk Assessment.Holm Security VMP gives organizations the ability to continuously train and educate staff on proactive cyber security measures as well as providing awareness tools based on user behavior.
Control measures on internet banking.Network Scanning and Web Application Scanning.Holm Security VMP allows for scanning of http/https web application domains, REST APIs as well as network equipment.
Control measures on cyber security.
Reporting, scheduling and continuous monitoring.Holm Security VMP allows for automated security testing to be conducted scheduled and on-demand. Automated monitoring tools allows for identification of configuration and rule changes.