Updated for 2026 Syllabus Detailed Explanations High-Yield Core Concepts

Bank Promotion Exam Guide

Banking Awareness | Banking Knowledge | for all Bank Exams

Home » Banking Awareness October 2025 to… » | Priority Sector, Consumer Protection & Digital Lending
Module: | Priority Sector, Consumer Protection & Digital Lending

Q125: Who is responsible for appointing the CISA certified auditor to conduct the Information System (IS) audit of entities that receive credit information based on individual consent?

A
The Reserve Bank of India (RBI)
B
The Credit Information Company (CIC) that shares the data
C
The entity itself (the one receiving the information)
D
A consortium of all member Credit Institutions (CIs)
✅ Correct Answer: C
The correct answer is C. The CIC must incorporate a specific clause in their agreement stipulating that a CISA (Certified Information Systems Auditor) certified auditor, appointed directly by the entity itself (the third party receiving the data), would conduct the Information System (IS) audit.
This appropriately shifts the financial and operational burden of strict cybersecurity compliance onto the entity requesting the data, rather than the CIC or the RBI.
← Previous (Q124) When a Credit Information Company (CIC) share... Next (Q126) → When a Credit Institution (CI) corrects erron... 📚 Back to | Priority Sector, Consumer Protection & Digital Lending

🔄 More from | Priority Sector, Consumer Protection & Digital Lending: