FSI published a brief that examines the operational resilience initiatives of financial-sector authorities, in response to the COVID-19 outbreak. The brief focuses on examples of business continuity guidance issued by authorities in response to COVID-19, including updates to the existing guidance and the incorporation of pandemic scenarios into testing operational resilience. The brief emphasizes that pandemics may have unique elements that financial institutions need to incorporate in the scenarios to test their operational resilience.
Supervisory discussions at the international level have recently shifted toward achieving operational resilience more broadly. BoE is the first national authority to have issued a consultation on its operational resilience expectations. BoE defines operational resilience as the ability of firms and the financial sector to prevent, adapt, respond to, recover from, and learn from operational disruptions. The objective of addressing operational resilience of financial institutions to IT outages and cyber attacks has clearly motivated the BoE consultation as well as the international supervisory discussions. However, as seen in the disruption that COVID-19 outbreak has caused in recent weeks, financial institutions need to review and ensure that their operational resilience procedures are also fit for purpose during pandemics.
As shown by the recent spate of supervisory guidance in relation to the COVID-19 outbreak, pandemics may have unique elements that financial institutions need to incorporate in the scenarios to test their operational resilience. International efforts to come up with operational resilience standards should take into account these unique elements, including the following:
- Critical or essential employees—It is important to identify the critical functions and employees who support important business services as well as to ensure employee safety. Financial institutions should ensure that employees can safely resume their duties (remotely, if necessary) so that business services can recover as quickly as possible.
- IT infrastructure—Financial institutions should ensure that their IT infrastructure can support a sharp increase in usage and take steps to safeguard information security.
- Third-party service providers—Financial institutions should ensure that their external service providers and/or critical suppliers are taking adequate measures and are sufficiently prepared for a scenario in which there will be heavy reliance on their services.
- Cyber resilience—Financial institutions’ cyber resilience processes should remain vigilant to identify and protect vulnerable systems. These processes should be able to detect and respond to cyber attacks and help an institution recover from them.
Keywords: International, Banking, Insurance, Securities, COVID-19, Business Continuity, Operational Risk, Cyber Risk, Third-Party Arrangements, Operational Resilience, BoE, BIS, FSI
Leading economist; commercial real estate; performance forecasting, econometric infrastructure; data modeling; credit risk modeling; portfolio assessment; custom commercial real estate analysis; thought leader.
OSFI has set out the near-term priorities for federally regulated financial institutions and federally regulated private pension plans for the coming months until March 31, 2022.
Under the Italian G20 Presidency, BIS Innovation Hub and the Italian central bank BDI launched the second edition of the G20 TechSprint on the lookout for innovative solutions to resolve operational problems in green and sustainable finance.
EBA proposed the regulatory technical standards on a central database on anti-money laundering and countering the financing of terrorism (AML/CFT) in EU.
ECB published its response to the targeted EC consultation on the review of the bank crisis management and deposit insurance framework in EU.
ACPR published Version 1.0.0 of the RUBA taxonomy, which will come into force from the decree of January 31, 2022.
BCBS, CPMI, and IOSCO (the Committees) are inviting entities that participate in market infrastructures and securities markets through an intermediary as well as non-bank intermediaries to complete voluntary surveys on the use of margin calls.
ECB published Decision 2021/752 to amend Decision 2019/1311 on the third series of targeted longer-term refinancing operations or TLTRO III.
The Central Bank of Ireland published Version 2.7 of the draft credit data template and rules for monthly AnaCredit reporting by banks.
OSFI proposed revisions to the Basel Capital Adequacy Reporting (BCAR) and leverage requirements returns for the 2023 reporting, with the comment period ending on July 09, 2021.
EBA published a discussion paper on review of the standardized nonperforming loans (NPL) transaction data templates, along with the proposed revised NPL data templates.