Featured Product

    IOSCO Consults on Outsourcing Principles for Operational Resilience

    May 28, 2020

    IOSCO proposed updates to its principles for regulated entities that outsource tasks to service providers. The proposed Principles on Outsourcing are based on IOSCO´s 2005 Outsourcing Principles for Market Intermediaries and the 2009 Outsourcing Principles for Markets but their application has been expanded to include trading venues, market participants acting on a proprietary basis, credit rating agencies, and financial market infrastructures. The consultation period ends on October 01 2020.

    The revised principles comprise a set of fundamental precepts and a set of seven principles. The consultation report contains sections on particular sectors and issues, with Annex A providing a report on outsourcing among credit rating agencies, including the use of cloud computing. The fundamental precepts cover issues such as the definition of outsourcing, the assessment of materiality and criticality, their application to affiliates, the treatment of sub-contracting, and outsourcing on a cross-border basis. The seven principles cover the following areas, with each of these principles being supplemented with guidance for implementation:

    • Due diligence in the selection and monitoring of a service provider
    • The contract with a service provider
    • Information security, business resilience, continuity and disaster recovery
    • Confidentiality Issues
    • Concentration of outsourcing arrangements
    • Access to data, premises, personnel, and associated rights of inspection
    • Termination of outsourcing arrangements 

    Since the publication of IOSCO´s earlier principles on outsourcing for market intermediaries and for markets, developments in markets and technology have increased regulatory attention on risks related to outsourcing and the need to ensure the operational resilience of regulated entities. IOSCO prepared this report before the COVID-19 outbreak. However, on April 08, 2020, the IOSCO Board agreed to delay publication of its reports to allow firms and financial institutions to redirect their resources to focus on the challenges arising from the pandemic. As the initial stages of this crisis pass, the IOSCO Board has decided to publish this report now because the outbreak of COVID-19 has highlighted the need to ensure resilience in operational activities and to maintain business continuity in situations where both external and often unforeseen shocks impact both firms and their service providers. To account for the ongoing resource constraints on financial institutions, however, the consultation period goes well beyond the typical 90-day comment period and will end on October 01, 2020. The consultation report includes a set of questions, including one of particular relevance during the current COVID-19 pandemic: What measures for business continuity would be effective in situations where all, or a significant portion, of both the outsourcers’ and third-party providers’ work force is working remotely? In particular, what steps should be taken so Cyber Security and Operational Resilience can be ensured?” 

     

    Related Links

    Comment Due Date: October 01, 2020

    Keywords: International, Banking, Securities, PMI, Credit Rating Agencies, Operational Risk, Outsourcing, Third-party Arrangements, Cloud Computing, COVID-19, IOSCO

    Related Articles
    News

    EC Consults on PSD2 and Open Finance; EU Reaches Agreement on DORA

    The European Commission (EC) published a public consultation on the review of revised payment services directive (PSD2) and open finance.

    May 11, 2022 WebPage Regulatory News
    News

    EC Mandates ESAs to Propose Amendments to SFDR Technical Standards

    The European Commission (EC) has issued two letters mandating the European Supervisory Authorities (ESAs) to jointly propose amendments to the regulatory technical standards under Sustainable Finance Disclosure Regulation or SFDR.

    May 11, 2022 WebPage Regulatory News
    News

    EBA Examines Supervisory Practices, Issues Deposits Reporting Template

    The European Banking Authority (EBA) published its annual report on convergence of supervisory practices for 2021. Additionally, following a request from the European Commission (EC),

    May 11, 2022 WebPage Regulatory News
    News

    US Agency Publications Address Basel, Reporting, and CECL Developments

    The Farm Credit Administration published, in the Federal Register, the final rule on implementation of the Current Expected Credit Losses (CECL) methodology for allowances

    May 09, 2022 WebPage Regulatory News
    News

    SEC Extends Comment Period on Climate Risk Disclosures

    The U.S. Securities and Exchange Commission (SEC) looks set to intensify focus on crypto-assets and cyber risk and extended the comment period on the proposed rules to enhance and standardize climate-related disclosures for investors.

    May 09, 2022 WebPage Regulatory News
    News

    APRA Reduces Committed Liquidity Facility, Issues Other Updates

    The Australian Prudential Regulation Authority (APRA) announced reduction in the aggregate Committed Liquidity Facility and issued an update on the operational preparedness for zero and negative market interest rates.

    May 09, 2022 WebPage Regulatory News
    News

    CMF Consults on Basel Rules, Presents Roadmap to Address Climate Risks

    The Commission for the Financial Market (CMF) in Chile published capital adequacy ratios (as of February 2022, January 2022, and December 2021) for 17 banks and for the banking system.

    May 06, 2022 WebPage Regulatory News
    News

    PRA Issues Statement on NPEs and Policy on Trading Activity Wind-Down

    The Prudential Regulation Authority (PRA) issued a statement on the European Banking Authority (EBA) guidelines on management of non-performing exposures (NPEs) and forborne exposures.

    May 06, 2022 WebPage Regulatory News
    News

    EBA Updates Standards for 2023 Benchmarking of Internal Approaches

    The European Banking Authority (EBA) updated the implementing technical standards that specify the data collection for the 2023 supervisory benchmarking exercise in relation to the internal approaches used in market risk, credit risk, and IFRS 9 accounting.

    May 06, 2022 WebPage Regulatory News
    News

    EIOPA Responds to Stakeholder Views on Blockchain in Insurance

    The European Insurance and Occupational Pensions Authority (EIOPA) published a feedback statement on the responses received to the consultation on blockchain and smart contracts in insurance.

    May 06, 2022 WebPage Regulatory News
    RESULTS 1 - 10 OF 8179