Finance Sector Computer Security Incident Response Team (FINCSIRT) is a specialized service unit that is responsible for receiving, reviewing, processing and responding to computer security alerts and incidents affecting the Banks and other Licensed Financial Institutions in the country.

FINCSIRT is a joint initiative of the Central Bank of Sri Lanka, the Sri Lanka Computer Emergency Response Team (Sri Lanka CERT) and Sri Lankan Bankers Association; and is hosted under LankaClear (Private) Limited, the national payment infrastructure provider.

FINCSIRT is established as a centralized body (Not-for-Profit Organisation) to coordinate security efforts within the banking and financial sector, and as an entity steered and funded by the Banks, will have the prime responsibility and accountability towards them.


Sri Lankas first Information Security Operation Center connecting the islandwide finance institutes on facilitating proactive and reactive incident response and management.

Sri Lankas first Financial sector Cyber Security Threat Intelligence Platform, working 24*7 gathering Sri Lankan financial sector threat intelligences and the global threat intelligences to identify possible threats and build threat predictions heading towards the Financial Sector of Sri Lanka.



To ensure that the financial sector in Sri Lanka to be the most resilient in Asia against the rapidly increasing information security threats.


Mission To support all the Sri Lankan Financial Sector stakeholders to build information Security resiliency against the rapidly advancing information security threats by:

• Building a collaborative platform for all the members in the Sri Lankan Financial Sector to work together and share threat intelligence.

• Identifying the information security threats to the financial sector proactively and responding to the incidents effectively.

• Ensuring compliance to Information Security Baseline Standards by the Sri Lankan financial sector in collaboration with Sri Lanka CERT|CC and Central Bank of Sri Lanka.

• Working with local and foreign CERTs and CSIRTs, vendors and all affiliated parties to gather and disseminate information security knowledge and threat intelligence.

• Operating the Financial Sector Security Operations Center on a 24X7 basis to monitor and detect incidents promptly and respond effectively.

• Develop Sri Lankan Financial Sector information security resiliency.