How many controls does HKMA Cyber Resilience Assessment Framework have?

HKMA Cyber Resilience Assessment Framework contains 24 controls organized across 7 domains.

Where does HKMA Cyber Resilience Assessment Framework apply?

HKMA Cyber Resilience Assessment Framework is applicable in Hong Kong. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does HKMA Cyber Resilience Assessment Framework map to?

HKMA Cyber Resilience Assessment Framework has control-to-control mappings with 430 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with HKMA Cyber Resilience Assessment Framework compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

HKMA Cyber Resilience Assessment Framework (C-RAF)

The Hong Kong Monetary Authority (HKMA) Cyber Resilience Assessment Framework (C-RAF) provides a comprehensive framework for authorized institutions to assess their cyber resilience maturity. Introduced in 2016 and enhanced through subsequent guidance, it establishes inherent risk profiling and maturity assessment across governance, identification, protection, detection, and response/recovery domains..

Domains

Domain 7: Inherent Risk Assessment

Domain 6: Situational Awareness

Domain 5: Response and Recovery

Domain 4: Detection

Domain 3: Protection

Frequently Asked Questions

Map HKMA Cyber Resilience Assessment Framework (C-RAF) to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform