ECB published the European framework for Threat Intelligence-Based Ethical Red Teaming (TIBER-EU). TIBER-EU is the first Europe-wide framework for controlled and bespoke tests against cyber attacks in the financial market. This framework enables European and national authorities to work with financial entities to put in place a program to test and improve their resilience against sophisticated cyber attacks.
The TIBER-EU framework facilitates a harmonized European approach toward intelligence-led tests which mimic the tactics, techniques, and procedures of real hackers who can be a genuine threat. TIBER-EU-based tests simulate a cyber attack on an entity’s critical functions and underlying systems, such as its people, processes, and technologies. This helps the entity to assess its protection, detection, and response capabilities against potential cyber attacks, thus enabling it to learn and evolve to a higher level of cyber maturity. The TIBER-EU framework has been designed for national and European authorities and entities that form the core financial infrastructure, including entities with cross-border activities which fall within the regulatory remit of several authorities. The framework can be used for any type of financial-sector entity. For the purposes of the TIBER-EU framework, entities include payment systems, central securities depositories, central counterparty clearing houses, trade repositories, credit rating agencies, stock exchanges, securities settlement platforms, banks, payment institutions, insurance companies, asset management companies and any other service providers deemed critical for the functioning of the financial sector.
Keywords: Europe, EU, Banking, Insurance, Securities, PMI, Cyber Risk, TIBER-EU, Cyber Resilience, ECB
Previous ArticleBoE Undertakes Proof of Concept to Understand Renewed RTGS Service
HKMA urged authorized institutions to take early action to adhere to the IBOR Fallbacks Protocol, which ISDA is expected to publish soon.
FSB published a global transition roadmap for London Inter-bank Offered Rate (LIBOR).
HM Treasury published a document that summarizes the responses received from a consultation on the approach of UK to transposition of the revised Bank Resolution and Recovery Directive (BRRD2).
HM Treasury published the government response to the feedback received on the consultation for updating the prudential regime of UK before the end of the Brexit transition period.
PRA published the final policy statement PS22/20, which contains the updated supervisory statement SS12/13 on counterparty credit risk.
FSB published an update on its work to address market fragmentation. FSB is working in this area in collaboration with the other standard-setting bodies.
EBA proposed revisions to the guidelines on major incident reporting under the second Payment Service Directive (PSD2).
EBA published the final draft regulatory technical standards specifying the methodology for prudential treatment of software assets by banks.
FSB published a report presenting the roadmap to enhance cross-border payments by providing a high-level plan that sets ambitious but achievable goals and milestones in the five focus areas.
In a recent communication, EIOPA urged the insurance sector to complete its preparations for the end of the Brexit transition period on December 31, 2020.