Bundesbank Issues Updates on Cyber Risk Mapping & Reporting for Banks
Deutsche Bundesbank published reporting updates for banks and announced the establishment of a knowledge transfer laboratory to investigate potential cyber risks with the help of artificial intelligence while the Federal Financial Supervisory Authority of Germany (BaFin) published the report detailing its supervisory activities in 2021.
As part of the reporting updates for banks, Bundesbank published the XBRL taxonomy 3.2, pursuant to the EBA implementing technical standards on supervisory reporting. The taxonomy version 3.2 contains forms with the German header information. Bundesbank also published Version 2.04 of the derivation rules for completeness check at the form level, with respect to the data quality of the European harmonized reporting system. Finally, Bundesbank published Version 4.02 of the document containing information on additional ECB validation rules that go beyond the relevant taxonomy. Bundesbank published these additional validation rules as part of the implementation of reporting at the national level. According to Article 4 of the Regulation ECB/2014/29, national supervisory authorities should apply both the validation and plausibility checks published by EBA and those defined by ECB in the context of data quality checks. This version includes list of checks valid from the second quarter of 2022.
Bundesbank and the German Research Center for Artificial Intelligence (DFKI) are establishing a joint knowledge transfer laboratory to investigate potential cyber risks for the financial and banking system with the help of artificial intelligence. The new TransferLab wants to capture the relationships between the players in the German financial system and the corresponding cyber network. Benjamin Weigert, Head of Financial Stability at the Deutsche Bundesbank, is expecting a substantial benefit from the project: "As part of the Bundesbank's statutory financial stability mandate, we are required to deal with the financial stability implications of cyber risks. To do this, we have to analyze the networking of the German financial system using information and communication technologies. Linking the cyber mapping concept developed at the Bundesbank with artificial intelligence methods and processes represents a promising approach to achieving this goal."
Related Links (in German)
- Bundesbank on Cyber Risk Mapping
- Bundesbank Derivation and Validation Rules
- Derivation Rules (XLSX)
- Additional ECB Validation Rules (XLSX)
- Bundesbank on XBRL Taxonomy 3.2
- BaFin Annual Report for 2021
Keywords: Europe, Germany, Banking, Cyber Risk, Cyber Mapping, Artificial Intelligence, Regtech, Suptech, Derivation Rules, Validation Rules, Annual Report, Taxonomy, Reporting Framework 3.2, Reporting, EBA, ECB, Bundesbank, BaFin
Featured Experts

María Cañamero
Skilled market researcher; growth strategist; successful go-to-market campaign developer

Nicolas Degruson
Works with financial institutions, regulatory experts, business analysts, product managers, and software engineers to drive regulatory solutions across the globe.

David Fihrer
Skilled life insurance actuary; subject matter expert on IFRS 17 and source of earnings
Previous Article
CMF Issues Updates on Basel Framework and Loan Guarantee ProvisionsRelated Articles
EBA Clarifies Use of COVID-19-Impacted Data for IRB Credit Risk Models
The European Banking Authority (EBA) published four draft principles to support supervisory efforts in assessing the representativeness of COVID-19-impacted data for banks using the internal ratings based (IRB) credit risk models.
EP Reaches Agreement on Corporate Sustainability Reporting Directive
The European Council and the European Parliament (EP) reached a provisional political agreement on the Corporate Sustainability Reporting Directive (CSRD).
PRA Consults on Model Risk Management Principles for Banks
The Prudential Regulation Authority (PRA) launched a consultation (CP6/22) that sets out proposal for a new Supervisory Statement on expectations for management of model risk by banks.
EC Regulation Amends Standards for Calculating Credit Risk Adjustments
The European Commission (EC) published the Delegated Regulation 2022/954, which amends regulatory technical standards on specification of the calculation of specific and general credit risk adjustments.
BIS Hub Updates Work Program for 2022, Announces New Projects
The Bank for International Settlements (BIS) Innovation Hub updated its work program, announcing a set of projects across various centers.
EIOPA Issues Cyber Underwriting Proposal, Statement on Open Insurance
The European Insurance and Occupational Pensions Authority (EIOPA) published two consultation papers—one on the supervisory statement on exclusions related to systemic events and the other on the supervisory statement on the management of non-affirmative cyber exposures.
US Senate Members Seek Details on SEC Proposed Climate Disclosure Rule
Certain members of the U.S. Senate Committee on Banking, Housing, and Urban Affairs issued a letter to the Securities and Exchange Commission (SEC)
EIOPA Consults on Review of Securitization Framework in Solvency II
The European Insurance and Occupational Pensions Authority (EIOPA) published a consultation paper on the advice on the review of the securitization prudential framework in Solvency II.
UK Authorities Issue Regulatory and Reporting Updates for Banks
The Prudential Regulation Authority (PRA) issued a statement on PRA buffer adjustment while the Bank of England (BoE) published a notice on the statistical reporting requirements for banks.
BCBS Issues Climate Risk Principles while HKMA Expresses Its Support
The Basel Committee on Banking Supervision (BCBS) issued principles for the effective management and supervision of climate-related financial risks.