OtherHong Kong
HKMA Cyber Resilience Assessment Framework (C-RAF)
The Hong Kong Monetary Authority (HKMA) Cyber Resilience Assessment Framework (C-RAF) provides a comprehensive framework for authorized institutions to assess their cyber resilience maturity. Introduced in 2016 and enhanced through subsequent guidance, it establishes inherent risk profiling and maturity assessment across governance, identification, protection, detection, and response/recovery domains..
Domains
Domain 7: Inherent Risk Assessment
Domain 6: Situational Awareness
Domain 5: Response and Recovery
Domain 4: Detection
Domain 3: Protection
Compare HKMA Cyber Resilience Assessment Framework (C-RAF)
HKMA Cyber Resilience Assessment Framework (C-RAF) vs ISO 27001:2022View comparison →HKMA Cyber Resilience Assessment Framework (C-RAF) vs SOC 2View comparison →HKMA Cyber Resilience Assessment Framework (C-RAF) vs NIST CSF 2.0View comparison →HKMA Cyber Resilience Assessment Framework (C-RAF) vs GDPRView comparison →HKMA Cyber Resilience Assessment Framework (C-RAF) vs HIPAAView comparison →HKMA Cyber Resilience Assessment Framework (C-RAF) vs PCI DSS 4.0View comparison →
HKMA Cyber Resilience Assessment Framework (C-RAF) by Industry
HKMA Cyber Resilience Assessment Framework (C-RAF) for Healthcare→HKMA Cyber Resilience Assessment Framework (C-RAF) for Financial Services→HKMA Cyber Resilience Assessment Framework (C-RAF) for Technology→HKMA Cyber Resilience Assessment Framework (C-RAF) for Government→HKMA Cyber Resilience Assessment Framework (C-RAF) for Manufacturing→HKMA Cyber Resilience Assessment Framework (C-RAF) for Energy→HKMA Cyber Resilience Assessment Framework (C-RAF) for Retail→HKMA Cyber Resilience Assessment Framework (C-RAF) for Education→
HKMA Cyber Resilience Assessment Framework (C-RAF) by Role
HKMA Cyber Resilience Assessment Framework (C-RAF) for CISOs→HKMA Cyber Resilience Assessment Framework (C-RAF) for Compliance Officers→HKMA Cyber Resilience Assessment Framework (C-RAF) for Risk Managers→HKMA Cyber Resilience Assessment Framework (C-RAF) for IT Directors→HKMA Cyber Resilience Assessment Framework (C-RAF) for DPOs→HKMA Cyber Resilience Assessment Framework (C-RAF) for Auditors→
Frequently Asked Questions
What is HKMA Cyber Resilience Assessment Framework?
The Hong Kong Monetary Authority (HKMA) Cyber Resilience Assessment Framework (C-RAF) provides a comprehensive framework for authorized institutions to assess their cyber resilience maturity. Introduced in 2016 and enhanced through subsequent guidance, it establishes inherent risk profiling and maturity assessment across governance, identification, protection, detection, and response/recovery domains..
How many controls does HKMA Cyber Resilience Assessment Framework have?
HKMA Cyber Resilience Assessment Framework contains 24 controls organized across 7 domains.
Where does HKMA Cyber Resilience Assessment Framework apply?
HKMA Cyber Resilience Assessment Framework is applicable in Hong Kong. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does HKMA Cyber Resilience Assessment Framework map to?
HKMA Cyber Resilience Assessment Framework has control-to-control mappings with 430 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with HKMA Cyber Resilience Assessment Framework compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for HKMA Cyber Resilience Assessment Framework (C-RAF)?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.