Quantum Deadlines Loom. Most Banks Can't Say Where Their Cryptography Is Deployed The standards are written, CERT-In has issued its CBOM guidance and adversaries are already harvesting encrypted data to decrypt later. The gap isn't quantum hardware. It's visibility. Here are five questions every bank CISO should answer now, starting with one: Do we have a cryptographic inventory?