Identity Attacks and Credential Theft Under BNM's RMiT

Roundtable Overview

Credential theft and identity attacks have become a primary entry point for cyber incidents across Malaysian banking. BNM's Risk Management in Technology policy mandates multi-factor authentication, Zero Trust architecture and privileged access controls — requirements exposing significant gaps in how banks currently manage identity at scale. This roundtable examines where credential and access controls are failing, which implementation approaches are proving effective, and how banks are meeting RMiT obligations without disrupting operations.

Closed-Door Discussion

Chatham House Rule

Peer-Driven

Pitch-Free

Discussion Points

How banks are deploying stronger access controls while managing disruption across legacy systems and complex IT environments?

Where privileged access management weaknesses create the greatest exposure, and how banks are prioritising remediation under RMiT timeline?

How banks are building continuous identity monitoring capabilities that identify compromised credentials before incidents escalate?

Agenda

1815 - 1900

Arrival and Networking
Guests arrive and are welcomed into an informal reception ahead of the evening's discussion. An opportunity to meet fellow attendees and build connections before the roundtable gets underway.

1900 - 2000

Roundtable Discussion and Drinks
The group moves to a seated, moderated discussion guided by a structured agenda. An open, candid conversation among peers on the evening's core themes, with room for debate and different perspectives.

2000 - 2115

Three-Course Dinner
A private dinner in an elegant setting, where conversation continues in a more relaxed environment. An opportunity to deepen connections and continue the themes of the evening over fine cuisine.

2115 - 2200

Wrap Up, Q&A and Closing DrinksThe moderator draws out key takeaways and opens the floor for final questions and reflections. The evening closes with informal drinks, allowing attendees to continue conversations and explore next steps.

Who Will Attend

Chief Information Security Officer · Head of Technology Risk · Head of Cyber Risk · Head of IT Security · Head of Identity and Access Management · Head of Digital Banking

Apply to Attend

This is an invitation-only event with limited seating. Attendance is subject to approval to ensure a senior and relevant group. Please apply below. Further details will be shared upon confirmation.