ECB Publishes the Cyber Resilience Oversight Expectations
ECB published the final cyber resilience oversight expectations for financial market infrastructures (FMIs). The cyber resilience oversight expectations are based on the global guidance on cyber resilience for financial market infrastructures. This guidance was published by CPMI and IOSCO in June 2016. ECB also published a high-level overview of the comments received during the consultation and summarized the main amendments to the cyber resilience oversight expectations.
The cyber resilience oversight expectations provide FMIs with detailed steps on how to operationalize the guidance, provide overseers with clear expectations to assess FMIs under their responsibility, and provide the basis for a meaningful discussion between the FMIs and their respective overseers. During the consultation, ECB received responses from 20 entities, including FMIs, banks, banking communities, and associations. Comments in the public consultation mostly focused on four aspects:
- Level of prescriptiveness of the expectations
- Three levels of cyber maturity and how these correspond to other international cybersecurity frameworks, which also have maturity models
- Process for oversight assessments against the cyber resilience oversight expectations
- Need for harmonization across different jurisdictions and among regulators, to reduce the fragmentation of regulatory expectations and facilitate oversight convergence
Cyber resilience is an important aspect of the operational resilience of FMIs and efficient operation of FMIs is essential for maintaining and enhancing financial stability. If not properly managed, FMIs can be sources of financial shocks, such as credit losses. They can also be a major channel through which these shocks are transmitted across domestic and international financial markets.
Related Links
- Press Release
- Cyber Resilience Oversight Guidance (PDF)
- ECB Response to Consultation
- Responses from Entities (ZIP)
- CPMI-IOSCO Guidance on Cyber Resilience
Keywords: Europe, EU, Banking, PMI, FMI, Cyber Resilience, Cyber Risk, Operational Risk, ECB
Previous Article
EIOPA Publishes Q&A on Regulations and GuidelinesRelated Articles
|
News
ESMA Releases Enforcement Priorities for 2019 Annual Financial ReportsESMA published a statement on the priorities that European enforcers will consider when examining the 2019 annual financial reports of listed companies.
October 22, 2019
WebPage
Regulatory News
|
|
News
EC Consults on Alternative Standardized Approach for Market RiskEC is consulting on a delegated regulation amending the Capital Requirements Regulation (CRR) with regard to the alternative standardized approach for market risk.
October 21, 2019
WebPage
Regulatory News
|
|
News
CPMI Report Examines Impact of Global StablecoinsThis report by the G7 Working Group on Stablecoins finds that stablecoins, regardless of size, have implications ranging from anti-money laundering efforts across jurisdictions to operational resilience (including for cyber security), consumer or investor and data protection, and tax compliance.
October 18, 2019
WebPage
Regulatory News
|
|
News
BoE Announces Date for Publication of Stress Test Results for BanksBoE announced its plans to publish results of the full UK annual stress tests on December 10, 2019.
October 18, 2019
WebPage
Regulatory News
|
|
News
US Agencies Request Comments on Use and Impact of CAMELS RatingsUS Agencies (FDIC and FED) are seeking information and comments from interested parties regarding the consistency of ratings assigned by the agencies under the Uniform Financial Institutions Rating System (UFIRS).
October 18, 2019
WebPage
Regulatory News
|
|
News
PRA Consults on Approach to Supervising Liquidity and Funding RisksIn consultation paper (CP27/19), PRA published a proposal (CP27/19) to update the supervisory statement SS24/15 on the PRA approach to supervising liquidity and funding risk.
October 17, 2019
WebPage
Regulatory News
|
|
News
US Agencies Consult on Policy Statement on Allowance for Credit LossesUS Agencies (FDIC, FED, NCUA, and OCC) are consulting on the policy statement on allowances for credit losses and on the guidance on credit risk review systems.
October 17, 2019
WebPage
Regulatory News
|
|
News
FSI Paper Examines Use of Suptech Initiatives by Financial AuthoritiesThe Financial Stability Institute (FSI) of BIS published a paper that examines the suptech developments by analyzing suptech initiatives of 39 financial authorities globally.
October 17, 2019
WebPage
Regulatory News
|
|
News
US Agencies Publish Notice to Extend Form FFIEC 102 for Three YearsUS Agencies (FDIC, FED, and OCC) published a joint notice regarding extension of the market risk regulatory report for institutions subject to the market risk capital rule (FFIEC 102).
October 17, 2019
WebPage
Regulatory News
|
|
News
ECB Publishes Recommendations on Euro Risk-Free Rates TransitionECB published a report, by private sector working group on euro risk-free rates, which contains recommendations, from a risk management perspective, on the transition to new risk-free rates.
October 17, 2019
WebPage
Regulatory News
|
