FSB published a progress report on its work on developing effective practices for financial institutions’ response to, and recovery from, a cyber incident. FSB has delivered the report to G20 Finance Ministers and Central Bank Governors, ahead of their meetings in Fukuoka on June 8-9. As part of its work program to enhance the cyber resilience of financial institutions, FSB is developing a toolkit of effective practices for a financial institution’s response to, and recovery from, a cyber incident. The toolkit aims to help supervisors and other relevant authorities in supporting financial institutions before, during, and after a cyber incident.
This project seeks to mitigate the implications of cyber incidents on financial stability, by taking into account their cross-border and cross-sectoral nature. It will also leverage on the shared experience and diversity of perspectives gathered in the course of this work. The development of effective practices will draw on a stocktake of publicly released guidance from national authorities and international bodies, a review of case studies on past cyber incidents, and engagements with external stakeholders.
The development of the toolkit of effective practices for financial institution’s response to, and recovery from, a cyber incident will be taken forward in two phases. The first phase of work will continue until October 2019 and focus on identifying and developing effective practices. As part of its outreach, FSB will launch an online survey in July, which will help to identify effective practices at financial institutions. The second phase of work will likely commence during the last quarter of this year and will focus on drafting of the toolkit. A public consultation on the report will be launched in early 2020 and the toolkit of effective practices will be finalized in late 2020.
Keywords: International, Banking, Insurance, Securities, PMI, Cyber Incident, Financial Stability, G20, Cyber Risk, Cyber Resilience, FSB
Previous ArticleFSB Report Reviews Implementation of Legal Entity Identifier
In a recent Market Notice, the Bank of England (BoE) confirmed that green gilts will have equivalent eligibility to existing gilts in its market operations.
The Financial Conduct Authority (FCA) published the policy statement PS21/9 on implementation of the Investment Firms Prudential Regime.
The European Banking Authority (EBA) proposed regulatory technical standards that set out criteria for identifying shadow banking entities for the purpose of reporting large exposures.
The Board of the International Organization of Securities Commissions (IOSCO) proposed a set of recommendations on the environmental, social, and governance (ESG) ratings and data providers.
The European Commission (EC) announced plans to defer the application of 13 regulatory technical standards under the Sustainable Finance Disclosure Regulation (2019/2088) by six months, from January 01, 2022 to July 01, 2022.
The Bank of England (BoE) published a consultation paper on approach to setting minimum requirement for own funds and eligible liabilities (MREL), an operational guide on executing bail-in, and a statement from the Deputy Governor Dave Ramsden.
The European Banking Authority (EBA) is seeking preliminary input on standardization of the proportionality assessment methodology for credit institutions and investment firms.
Certain regulatory authorities in the US are extending period for completion of the review of certain residential mortgage provisions and for publication of notice disclosing the determination of this review until December 20, 2021.
The Prudential Regulation Authority (PRA) published the policy statement PS18/21, which introduces an amendment in the definition of "higher paid material risk taker" in the Remuneration Part of the PRA Rulebook.
The European Banking Authority (EBA) published its annual report on asset encumbrance in banking sector.