As of yesterday, the Central Bank of Montenegro (CBCG), headed by Governor Radoje Žugić, banned employees from accessing external e-mail domains and online services for sharing data from the network of the supreme monetary institution, print screen functionality on employees' computers, and the use of CD/DVD drives on employees' computers.
According to "Vijesti" knowledge, this was done at the request of the Directorate for Operational Risk Management, Security and Business Continuity.
The head of the IT sector is Ivan Bošković, who is Žugić's cousin.
The supreme monetary institution confirmed the information of "Vijesti". As they officially said, these "activities are part of the CBCG's continuous efforts aimed at raising the level of information security".
"These and numerous other activities represent the implementation of the CBCG Information Security Policy. The first version of that document was established in September 2012, and it was last updated on March 29.03.2018, 27000. The CBCG Information Security Policy is fully aligned with international information security standards from ISO/IEC XNUMX series (which are also implemented through legislation in Montenegro) and compatible with the information security concept applied within the European Union. In accordance with this document, employees are obliged to use all resources of the CBCG information system for business purposes. , in a responsible and productive way. By using the CBCG e-mail system exclusively for business purposes and banning the services you mention, a responsible attitude towards information security is confirmed, and the rights of employees are not violated in any case," said the CBCG.
From that state institution, they claim that such an approach is present in other central banks, as well as in many other organizations that deal with business where a breach of information security would have unforeseeable consequences.
On November 6 of last year, Žugić amended the Rulebook of the CBCG on data secrecy dated March 25, 2016, adopted during the mandate of former governor Milojica Dakić.
Under the label "confidential" he added documents - information on the state of the sector for the provision of financial services and reports on the control of financial service providers. The list of secret documents includes the quarterly report on the operations of banks that is considered by the CBCG Council, manuals for performing direct and indirect control of banks, reports on the indirect control of banks, a document created on the basis of consultations within the CBCG, and in connection with the secret document, the response to the banks' remarks on direct control.
In the Rulebook on confidentiality of data under the label "confidential" is also included the documentation, acts and data that follow the process of approving aid, and that relate to health and material condition.
Bonus video:
