The Reserve Bank of India (RBI) has instructed Kotak Mahindra Bank to suspend the issuance of fresh credit cards and cease onboarding new customers via online and mobile banking channels. The directive comes following the RBI’s IT examination of the bank for the years 2022 and 2023, revealing significant concerns regarding the bank’s IT infrastructure and security measures.
According to an official press release from the RBI, Kotak Mahindra Bank was found to be deficient in its IT Risk and Information Security Governance, failing to meet regulatory guidelines despite repeated directives. The bank’s failure to adequately address these concerns in a timely and comprehensive manner has prompted the RBI to take decisive action.
The statement further elaborates that Kotak Mahindra Bank did not comply with the corrective action plans issued by the RBI for the aforementioned years. Additionally, the bank was found to be materially deficient in establishing necessary operational resilience, attributed to its failure to develop IT systems and controls proportional to its growth trajectory.
While the directive prohibits Kotak Mahindra Bank from issuing new credit cards and onboarding fresh customers through online and mobile channels, existing customers will continue to receive uninterrupted services, including credit card facilities.
This move by the RBI underscores the importance of robust IT infrastructure and stringent adherence to regulatory guidelines within the banking sector. It serves as a reminder to financial institutions to prioritize and invest in enhancing their IT frameworks to ensure operational resilience and compliance with regulatory standards.
Kotak Mahindra Bank has yet to issue a formal response to the RBI directive. The bank’s stakeholders and customers await further updates regarding the implementation of corrective measures to address the identified deficiencies in its IT governance and operational resilience.
