FSI published a brief that examines the operational resilience initiatives of financial-sector authorities, in response to the COVID-19 outbreak. The brief focuses on examples of business continuity guidance issued by authorities in response to COVID-19, including updates to the existing guidance and the incorporation of pandemic scenarios into testing operational resilience. The brief emphasizes that pandemics may have unique elements that financial institutions need to incorporate in the scenarios to test their operational resilience.
Supervisory discussions at the international level have recently shifted toward achieving operational resilience more broadly. BoE is the first national authority to have issued a consultation on its operational resilience expectations. BoE defines operational resilience as the ability of firms and the financial sector to prevent, adapt, respond to, recover from, and learn from operational disruptions. The objective of addressing operational resilience of financial institutions to IT outages and cyber attacks has clearly motivated the BoE consultation as well as the international supervisory discussions. However, as seen in the disruption that COVID-19 outbreak has caused in recent weeks, financial institutions need to review and ensure that their operational resilience procedures are also fit for purpose during pandemics.
As shown by the recent spate of supervisory guidance in relation to the COVID-19 outbreak, pandemics may have unique elements that financial institutions need to incorporate in the scenarios to test their operational resilience. International efforts to come up with operational resilience standards should take into account these unique elements, including the following:
- Critical or essential employees—It is important to identify the critical functions and employees who support important business services as well as to ensure employee safety. Financial institutions should ensure that employees can safely resume their duties (remotely, if necessary) so that business services can recover as quickly as possible.
- IT infrastructure—Financial institutions should ensure that their IT infrastructure can support a sharp increase in usage and take steps to safeguard information security.
- Third-party service providers—Financial institutions should ensure that their external service providers and/or critical suppliers are taking adequate measures and are sufficiently prepared for a scenario in which there will be heavy reliance on their services.
- Cyber resilience—Financial institutions’ cyber resilience processes should remain vigilant to identify and protect vulnerable systems. These processes should be able to detect and respond to cyber attacks and help an institution recover from them.
Keywords: International, Banking, Insurance, Securities, COVID-19, Business Continuity, Operational Risk, Cyber Risk, Third-Party Arrangements, Operational Resilience, BoE, BIS, FSI
Leading economist; commercial real estate; performance forecasting, econometric infrastructure; data modeling; credit risk modeling; portfolio assessment; custom commercial real estate analysis; thought leader.
The Bank for International Settlements (BIS) published a paper that studies impact of fintech lending on credit access for small businesses in U.S.
The Prudential Regulation Authority (PRA) issued the policy statement PS8/22 to amend the Own Funds and Eligible Liabilities (CRR) Part of the PRA Rulebook and update the supervisory statement SS7/13 titled "Definition of capital (CRR firms).
The European Banking Authority (EBA) launched the EU-wide transparency exercise for 2022, with results of the exercise expected to be published at the beginning of December, along with the annual Risk Assessment Report.
The Single Resolution Board (SRB) welcomed the adoption of the review of the Capital Requirements Regulation, or CRR, also known as the "CRR quick-fix."
The European Commission (EC) recently adopted the Delegated Regulation 2022/1622, which sets out the regulatory technical standards to specify the countries that constitute advanced economies for the purpose of specifying risk-weights for the sensitivities to equity.
The European Banking Authority (EBA) published the final draft regulatory technical standards specifying and, where relevant, calibrating the minimum performance-related triggers for simple.
The European Central Bank (ECB) is undertaking the integrated reporting framework (IReF) project to integrate statistical requirements for banks into a standardized reporting framework that would be applicable across the euro area and adopted by authorities in other EU member states.
The European Banking Authority (EBA) has been awarded the top European Standard for its environmental performance under the European Eco-Management and Audit Scheme (EMAS).
The Monetary Authority of Singapore (MAS) set out the Financial Services Industry Transformation Map 2025 and, in collaboration with the SGX Group, launched ESGenome.
The Basel Committee on Banking Supervision met, shortly after a gathering of the Group of Central Bank Governors and Heads of Supervision (GHOS), the oversight body of BCBS.