IOSCO Report Examines Application of International Cyber Standards
IOSCO published a final report that examines the application of the three internationally recognized cyber standards and frameworks by IOSCO member jurisdictions. This report, by the IOSCO Cyber Task Force, also identifies potential gaps in the application of these standards and seeks to promote sound cyber practices across the IOSCO membership.
The three cyber standards are the CPMI-IOSCO Guidance on Cyber Resilience for Financial Market Infrastructures; the National Institute of Standards and Technology Framework for improving Critical Infrastructure Cybersecurity; and the International Organization for Standardization 27000 series standards. The report does not propose new cyber standards or guidance. By highlighting the application of the Core Standards by some IOSCO members, the Cyber Task Force hopes more members will review their own cyber standards against the practices of the Core Standards and, where relevant, use the Core Standards as a model to further enhance their cyber regimes. Finally, the report sets out a series of questions that firms and regulators may use to promote awareness of cyber good practices or to guide them as they review their own practices.
The report finds that IOSCO members have made good progress in establishing appropriate cyber regimes, though there is still work to be done in key areas. The Cyber Task Force recommends that further work be considered to explore this report’s findings. It is recommended that the Cyber Task Force should consider exploring the use of sector-wide organizational surveys as part of the next phase of its work to gain a better understanding of where the gaps lie. The report is intended to serve as a resource for financial market regulators and firms, raise awareness of existing international cyber standards and frameworks, and encourage the adoption of good practices to protect against cyber risk.
Related Links
Keywords: International, Banking, Insurance, Securities, PMI, Cyber Risk, Cyber Task Force, Cyber Security, Operational Risk, IOSCO
Previous Article
PRA Issues Clarifications in Respect of Guidance on MREL ReportingRelated Articles
HKMA Finalizes Policy Modules on Group-Wide Approach and Remuneration
The Hong Kong Monetary Authority (HKMA) revised the Supervisory Policy Manual module CG-5 that sets out guidelines on a sound remuneration system for authorized institutions.
EBA Guide to Monitor Threshold for Intermediate Parent Undertakings
The European Banking Authority (EBA) published the final guidelines on the monitoring of the threshold and other procedural aspects on the establishment of intermediate parent undertakings in European Union (EU), as laid down in the Capital Requirements Directive (CRD).
PRA Finalizes Approach to Supervision of International Banks
In a recent Market Notice, the Bank of England (BoE) confirmed that green gilts will have equivalent eligibility to existing gilts in its market operations.
FCA Issues PS21/9 on Implementation of Investment Firms Regime
The Financial Conduct Authority (FCA) published the policy statement PS21/9 on implementation of the Investment Firms Prudential Regime.
EBA Proposes Regulatory Standards to Identify Shadow Banking Entities
The European Banking Authority (EBA) proposed regulatory technical standards that set out criteria for identifying shadow banking entities for the purpose of reporting large exposures.
IOSCO Proposes Recommendations on ESG Ratings and Data Providers
The Board of the International Organization of Securities Commissions (IOSCO) proposed a set of recommendations on the environmental, social, and governance (ESG) ratings and data providers.
ESMA Group Issues Recommendations on RFR Switch in Interdealer Market
The European Securities and Markets Authority (ESMA) published recommendations from the Working Group on Euro Risk-Free Rates (RFR) on the switch to risk-free rates in the interdealer market.
ECB Study Assesses Impact of Basel III Finalization Package
The European Central Bank (ECB) published a paper as well as an article in the July Macroprudential Bulletin, both of which offer insights on the assessment of the impact of Basel III finalization package on the euro area.
ISDA Finds FRTB Results in Higher Capital Charges for Carbon Trading
The International Swaps and Derivatives Association (ISDA) published a paper that explores the impact of the Fundamental Review of the Trading Book (FRTB) on the trading of carbon certificates.
PRA Updates Remuneration Policy Statement Templates and Tables
The Prudential Regulation Authority (PRA) published the remuneration policy self-assessment templates and tables on strengthening accountability.
