MFSA is conducting a cross-sectoral desk-based review on the management of information and communications technology (ICT) and cybersecurity risks. This is being done following the release of the Guidance on Technology Arrangements, ICT and Security Risk Management, and Outsourcing Arrangements and in line with the MFSA Supervisory Priorities for 2021. In this context, a self-assessment questionnaire is being released and will be distributed to the respective license holders in phases.
The review is being carried out by the supervisory ICT risk and cybersecurity function of MFSA. License holders will be receiving instructions to complete and submit their self-assessment questionnaire via an e-mail addressed to the Compliance Officer. Submission of the self-assessment questionnaire by license holders is mandatory and is required to be carried out within two months from receipt of the e-mail. The self-assessment questionnaire covers:
- ICT governance and strategy
- ICT and security risk management
- Information security
- ICT operations management
- Business continuity management
- ICT project and change management
- ICT systems acquisition and development
- ICT outsourcing arrangements
Related Link: Press Release
Keywords: Europe, EU, Malta, Banking, Self-Assessment Questionnaire, Cyber Risk, ICT Risk, Outsourcing Risk, Business Continuity, Operational Risk, Business Outsourcing, Operational Risk, MFSA
In a letter addressed to the industry, the Australian Prudential Regulation Authority (APRA) set out an updated schedule of policy priorities for the banking, insurance, and superannuation industries.
The European Banking Authority (EBA) published answers to 29 questions in the Single Rulebook Question and Answer (Q&A) tool in September.
The European Commission (EC) adopted a comprehensive review package of Solvency II rules in the European Union.
The Office of the Comptroller of the Currency (OCC) issued Versions 1.0 of the "Earnings" and "Regulatory Reporting" booklets of the Comptroller's Handbook.
The European Central Bank (ECB) published results of its economy-wide climate stress test, which aimed to assess the resilience of non-financial corporates and euro area banks to climate risks.
The European Banking Authority (EBA) published a report on the use of digital platforms in the banking and payments sector in European Union.
The Hong Kong Monetary Authority (HKMA) published updates on the policy measures that were announced in context of the ongoing pandemic.
The International Swaps and Derivatives Association (ISDA), along with several other associations, submitted a joint response to the Basel Committee on Banking Supervision (BCBS) consultation on preliminary proposals for the prudential treatment of cryptoasset exposures.
BIS published the September issue of the Quarterly Review, which contains special features that analyze the rapid rise in equity funding for financial technology firms, the effectiveness of policy measures in response to pandemic, and the evolution of international banking.
The Basel Committee for Banking Supervision (BCBS) met in September 2021 and reviewed climate-related financial risks, discussed impact of digitalization, and welcomed efforts by the International Financial Reporting Standards (IFRS) Foundation to develop a common set of sustainability reporting standards