CIMARegionalCaribbean
Cayman Islands Monetary Authority
Cybersecurity rules for the Cayman Islands' financial-services sector.
58 mapped controls
What it is
The Cayman Islands Monetary Authority's Rule and Statement of Guidance on Cybersecurity applies to all CIMA-regulated entities, requiring a cybersecurity framework proportionate to the nature, scale, and complexity of the business. GovernIQ maps it to assessable controls and keeps evidence audit-ready.
Who it applies to
- CIMA-regulated funds and fund administrators
- Banks, trust companies, and insurers
- Virtual asset service providers
How GovernIQ maps it
- 1
Scope by entity type
Determine the proportionate requirements for your license.
- 2
Map to controls
Translate the Statement of Guidance into concrete controls.
- 3
Assess and evidence
Run assessments and attach evidence to each control.
- 4
Maintain readiness
Stay continuously audit-ready with scheduled reassessment.
Sample control crosswalk
| Control | Mapped across frameworks |
|---|---|
| Access enforcement | CIMA 3.2ISO A.5.15NIST PR.AC-1 |
| Governance | CIMA 2.1ISO A.5.1NIST GV.RR-1 |