Featured Product

    ECB Representatives Speak About Work Toward Building Cyber Resilience

    March 09, 2018

    Sabine Lautenschläger and Benoît Cœuré of ECB spoke about cyber resilience at the first meeting of the Euro Cyber Resilience Board for pan-European Financial Infrastructures in Frankfurt. Ms. Lautenschläger highlights that “ECB Banking Supervision takes cyber resilience very seriously” and discussed the ECB progress so far, along with its plans for the future. Mr. Cœuré also discussed the future course of the high-level cyber resilience forum for pan-European financial market infrastructures, critical service providers, and competent authorities.

    With respect to the work done so far, Ms. Lautenschläger highlighted that ECB has conducted thematic reviews on cyber risk and outsourcing, a stocktake on how IT risks are supervised outside the euro area, and quite a few on-site inspections into IT and cyber risks, using state-of-the-art methods. ECB has also set up a reporting framework for cyber incidents. Drawing on the EBA guidelines, ECB has developed comprehensive IT risk self-assessments for the banks it supervises, including an extensive section on IT and cyber security. The results of these assessments will feed into the Supervisory Review and Evaluation Process, in which ECB will also challenge the information provided by banks. The review will give a better idea of the overall IT risk landscape in the banking industry and will help to identify blind spots early on and define areas for further investigation; this will eventually feed into the plans for 2019. In addition, the review will help to compare banks and partially anonymized feedback could then be shared with them. She concludes, “While cybercrime may have an aura of mystery and power, cyber resilience is quite the opposite: it calls for vigilance and diligence, day in, day out.”

    Additionally, Benoît Cœuré of ECB said that, within the Eurosystem, there has been close collaboration on implementing the Eurosystem oversight cyber resilience strategy for financial market infrastructures, in line with CPMI-IOSCO’s guidance on this topic. He explained the goals and objectives of the Euro Cyber Resilience Board (ECRB) for pan-European Financial Infrastructures and highlighted that ECRB will have no formal powers to impose binding measures and will not make supervisory judgments. The ECRB will be chaired by ECB, which will be closely involved together with national central banks and observers from the relevant European public authorities. He also outlined the two recent activities of ECB:

    • First, a cyber resilience survey, developed under the Eurosystem oversight cyber resilience strategy, was conducted across more than 75 payment systems, central securities depositories, and central counterparties throughout Europe. The survey highlighted a number of very pertinent issues for discussion, such as cyber governance, training and awareness, and cyber incident response.
    • Second, the Eurosystem is finalizing the main elements of the European Threat Intelligence-Based Ethical Red-Teaming (TIBER-EU) Framework. This is an interesting concept that is expected to raise the level of cyber resilience in Europe and enable cross-border, cross-authority testing, which has not been done before.

     

    Related Links

    Keywords: Europe, EU, Banking, PMI, Cyber Risk, Banking Supervision, ECB

    Related Articles
    News

    US Agencies Requests Comments on Use and Impact of CAMELS Ratings

    US Agencies (FDIC and FED) are seeking information and comments from interested parties regarding the consistency of ratings assigned by the agencies under the Uniform Financial Institutions Rating System (UFIRS).

    October 18, 2019 WebPage Regulatory News
    News

    BoE Announces Date for Publication of Stress Test Results for Banks

    BoE announced its plans to publish results of the full UK annual stress tests on December 10, 2019.

    October 18, 2019 WebPage Regulatory News
    News

    PRA Consults on Approach to Supervising Liquidity and Funding Risks

    In consultation paper (CP27/19), PRA published a proposal (CP27/19) to update the supervisory statement SS24/15 on the PRA approach to supervising liquidity and funding risk.

    October 17, 2019 WebPage Regulatory News
    News

    US Agencies Consult on Policy Statement on Allowance for Credit Losses

    US Agencies (FDIC, FED, NCUA, and OCC) are consulting on the policy statement on allowances for credit losses and on the guidance on credit risk review systems.

    October 17, 2019 WebPage Regulatory News
    News

    FSI Paper Examines Use of Suptech Initiatives by Financial Authorities

    The Financial Stability Institute (FSI) of BIS published a paper that examines the suptech developments by analyzing suptech initiatives of 39 financial authorities globally.

    October 17, 2019 WebPage Regulatory News
    News

    ECB Publishes Recommendations on Euro Risk-Free Rates Transition

    ECB published a report, by private sector working group on euro risk-free rates, which contains recommendations, from a risk management perspective, on the transition to new risk-free rates.

    October 17, 2019 WebPage Regulatory News
    News

    US Agencies Publish Notice to Extend Form FFIEC 102 for Three Years

    US Agencies (FDIC, FED, and OCC) published a joint notice regarding extension of the market risk regulatory report for institutions subject to the market risk capital rule (FFIEC 102).

    October 17, 2019 WebPage Regulatory News
    News

    FSB Report Examines Implementation and Impact of G20 Financial Reforms

    FSB published fifth annual report on the implementation and effects of the G20 financial regulatory reforms.

    October 16, 2019 WebPage Regulatory News
    News

    EBA Launches Consultation on Comprehensive Pillar 3 Disclosures

    EBA proposed the new comprehensive implementing technical standard (ITS) for public disclosures by financial institutions.

    October 16, 2019 WebPage Regulatory News
    News

    EBA Consults on Revised Technical Standards on Supervisory Reporting

    EBA launched a consultation on the revised implementing technical standards, or ITS, on supervisory reporting.

    October 16, 2019 WebPage Regulatory News
    RESULTS 1 - 10 OF 3997