(a) To undertake a comprehensive assessment of extant IT and e-banking related guidelines vis-à-vis international guidelines/best practices and suggest suitable recommendations

(b) Suggest recommendations with respect to information security in order to comprehensively provide for a broad framework to mitigate present internal and external threats to banks

(c) Provide recommendations for effective and comprehensive Information Systems Audit related processes to provide assurance on the level of IT risks in banks

(d) Suggest scope for enhancement of measures against cyber fraud through preventive and detective mechanisms as part of the fraud risk management framework in banks

(e) Identify measures to improve business continuity and disaster recovery related processes in banks

(f) Assess the impact of legal risks arising out of cyber laws, the need for any specific legislation relating to data protection and privacy and whether there is an Indian equivalent of the Electronic Fund Transfer Act in the US

(g) Consider scope to enhance customer education measures relating to cyber fraud

(h) Provide industry wide recommendations relevant to the above aspects

(i) Any other relevant recommendations relating to or incidental to above matters and considered by the Group to be important