General Information & Client Service
  • Americas: +1.212.553.1653
  • Asia: +852.3551.3077
  • China: +86.10.6319.6580
  • EMEA: +44.20.7772.5454
  • Japan: +81.3.5408.4100
Media Relations
  • New York: +1.212.553.0376
  • London: +44.20.7772.5456
  • Hong Kong: +852.3758.1350
  • Tokyo: +813.5408.4110
  • Sydney: +61.2.9270.8141
  • Mexico City: +001.888.779.5833
  • Buenos Aires: +0800.666.3506
  • São Paulo: +0800.891.2518
April 10, 2018

FFIEC members (FED, CFPB, FDIC, NCUA, OCC, and State Liaison Committee) issued a joint statement to describe the matters that financial institutions should consider when determining whether to use cyber insurance as a component of their risk management programs. The FFIEC members do not require financial institutions to maintain cyber insurance. The evolving cyber insurance market and the shifting cyber threat landscape may, however, prompt financial institutions to consider whether cyber insurance would be an effective part of their overall risk management programs.

The joint statement notes that cyber-attacks are increasing in volume and sophistication and that traditional general liability insurance policies may not provide effective coverage for all potential exposures caused by cyber events. Cyber insurance could offset financial losses from a variety of exposures—including data breaches resulting in the loss of confidential information—that may not be covered by more traditional insurance policies. Financial institution management should assess the scope of coverage of current insurance and consider how cyber insurance may fit into the overall risk management framework of an institution. As with any insurance coverage, cyber insurance does not diminish the importance of a sound control environment. Rather, cyber insurance may be a component of a broader risk management strategy, which includes identifying, measuring, mitigating, and monitoring cyber risk exposure.

 

Related Links

Keywords: Americas, US, Banking, PMI, Cyber Insurance, Risk Management, FFIEC

Related Insights
News

BCBS Finalizes Market Risk Capital Framework and Work Program for 2019

BCBS published the final framework for market risk capital requirements and its work program for 2019. Also published was an explanatory note to provide a non-technical description of the overall market risk framework, the changes that have been incorporated into in this version of the framework and impact of the framework.

January 14, 2019 WebPage Regulatory News
News

EBA Single Rulebook Q&A: First Update for January 2019

EBA published answers to 13 questions under the Single Rulebook question and answer (Q&A) updates for this week.

January 11, 2019 WebPage Regulatory News
News

PRA Proposes to Amend Supervisory Statement on Credit Risk Mitigation

PRA published the consultation paper CP1/19 that is proposing changes to the supervisory statement (SS17/13) on credit risk mitigation.

January 10, 2019 WebPage Regulatory News
News

FASB Issues Q&A on Estimating Credit Loss Reserves

FASB issued a question-and-answer (Q&A) document that addresses particular issues related to the weighted average remaining maturity (WARM) method for estimating the allowance for credit losses.

January 10, 2019 WebPage Regulatory News
News

FED Updates Reporting and Supplemental Instructions for Form FR Y-9C

FED published the updated reporting instructions and supplemental instructions for the FR Y-9C reporting form. The reporting frequency for FR Y-9C is quarterly, as of the last calendar day of the quarter.

January 09, 2019 WebPage Regulatory News
News

ESMA RTS on Supervisory Cooperation Under Securitization Regulation

ESMA issued the final regulatory technical standards (RTS) for cooperation between competent authorities and ESAs under the Securitization Regulation (2017/2402).

January 08, 2019 WebPage Regulatory News
News

PRA Updates Policy on Liquidity Reporting Under FSA047/048 and PRA110

PRA published the policy statement PS1/19 that provides feedback to responses to the consultation paper CP22/18 titled "Liquidity reporting: FSA047 and FSA048" and the proposal in CP16/18, which intended to correct the level of consolidation of the PRA110 reporting requirements.

January 08, 2019 WebPage Regulatory News
News

FED Proposes to Amend Company-Run Stress Testing Requirements

FED proposed to modify company-run stress testing requirements to conform with the Economic Growth, Regulatory Relief, and Consumer Protection (EGRRCP) Act.

January 08, 2019 WebPage Regulatory News
News

OCC Revises Asset Thresholds for Small Banks and Savings Associations

OCC published in the Federal Register revisions to the Community Reinvestment Act (CRA) regulations that became effective January 01, 2019.

January 07, 2019 WebPage Regulatory News
News

ESAs Publish Joint Report on Regulatory Sandboxes and Innovation Hubs

ESAs published a joint report providing a comparative analysis of the innovation facilitators (that is, regulatory sandboxes and innovation hubs) established to date within the EU.

January 07, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 2453