Layer 2 · GRC Consultants · Compliance Officers — scoping
RBI Applicability Matrix
Which RBI obligations bind which entity type — filter by your entity to scope your programme.
Filter by entity type:
| Regulation / Obligation | Scheduled Banks | NBFCs >₹1000 Cr | UCBs | Payment Aggregators | Notes |
|---|---|---|---|---|---|
| IT Strategy Committee (Board) | Mandatory | Mandatory | Mandatory | Mandatory | All REs per MD-ITGRC §4 |
| Annual IS Audit (CERT-In empanelled) | Mandatory | Mandatory | Mandatory | Mandatory | Auditor must be on CERT-In panel |
| Cybersecurity Framework adoption | Mandatory | Mandatory | Advisory | Mandatory | UCBs: advisory but strongly recommended |
Unlock the remaining 6 rows — free
Just your work email. Includes free India template downloads.