Global Correspondence

Updated GFMA Framework for the Regulatory Use of Penetration Testing in the Financial Services Industry

This Framework is designed to create an agreed upon approach for regulators and financial services firms to conduct effective testing to satisfy both supervisory and firm originated requirements.  This version has been updated from the original which was published in April 2018.

Download PDF: