The Bank for Agriculture and Agricultural Cooperatives (BAAC) recognizes the importance of risks associated with digital technology and cyber threats.
As such, it prioritizes the security of its information technology by implementing practices from the National Cyber Security Agency (NCSA).
BAAC disseminates its technology security policies and procedures to all employees, ensuring adherence to these practices across all information technology activities within the organization.
This approach aims to elevate the management of digital security to recognized standards, enhancing preparedness to address digital technology threats in alignment with evolving technologies and the business context.
Website and Internet Security.
- Update technology security policies and practices at least once a year.
- Conduct drills for the Cybersecurity Incident Response Plan.
- Ensure the availability of devices and information security systems.
- Manage critical patches for security devices effectively.
- Conduct vulnerability assessments for critical banking systems
- Continuously scan and remediate all critical and high vulnerabilities in internet-accessible systems.
- Install antivirus software on client machines.
- Implement Data Loss Prevention (DLP) systems on client machines.
- Ensure clear network segmentation and segregation.
- Prevent access to inappropriate websites as per policy using Secure Web Gateway devices.
- Utilize trusted applications that align with the organization’s needs.
- Implement Hypertext Transfer Protocol Secure (HTTPS) to secure data in transit, and encrypt
data using the Advanced Encryption Standard (AES).
- Enforce multi-factor authentication (MFA) for internet access.
- Log website usage and activities, and send these logs to a centralized log server.
- Limit user permissions to the minimum necessary (Principle of Least Privilege).
Recommendations for secure your devices.
While the Bank for Agriculture and Agricultural Cooperatives (BAAC) maintains high technology standards and security practices, it is widely acknowledged that no security system can completely protect against unauthorized access or destruction.
To help mitigate risks, it is advisable to follow these security recommendations.
- Be cautious when downloading programs from the internet.
- To guard against phishing websites, always verify the website address before logging in to any service.
- Install antivirus software and ensure it is regularly updated.
- Use a personal firewall to protect your computer from potential attacks by malicious actors.
Download Application BAAC Mobile
