FFIEC issued the Business Continuity Management (BCM) booklet, which is part of the FFIEC Information Technology Examination Handbook. The booklet focuses on assessing an entity's resilience through an enterprise risk management perspective that considers technology, business operations, communication strategies, training, testing, maintenance, and improvement—issues that are critical to business continuity. The booklet describes principles to help examiners determine whether management addresses risks related to the availability of critical financial products and services. The booklet uses common terms and builds on widely used standards to facilitate effective supervision. The booklet also addresses the topic of business continuity strategies for ensuring cyber resilience and managing third-party service providers. FFIEC members emphasized that examiners understand how management of banks and other regulated entities, including depository financial institutions, nonbank financial institutions, bank holding companies, and third-party service providers, have prepared their operations to avoid disruptions and to recover services.
Keywords: Americas, US, Business Continuity, Cyber Risk, Third-Party Service Providers, IT Examination Handbook, FFIEC, FDIC
Previous ArticleRegulatory Authorities Remark on IAIS Reforms for Insurance Sector
Next ArticleBIS and MAS Launch Innovation Hub in Singapore
FED finalized a rule that updates capital planning requirements to reflect the new framework from 2019 that sorts large banks into categories, with requirements that are tailored to the risks of each category.
ECB published results of the quarterly lending survey conducted on 143 banks in the euro area.
ESAs published the final draft implementing technical standards on reporting of intra-group transactions and risk concentration of financial conglomerates subject to the supplementary supervision in EU.
EBA published the annual report on asset encumbrance of banks in EU.
MAS revised the guidelines that address technology and cyber risks of financial institutions, in an environment of growing use of cloud technologies, application programming interfaces, and rapid software development.
FED updated the reporting form and instructions for the FR Y-9C report on consolidated financial statements for holding companies.
EBA issued a consultation paper on the guidelines on monitoring of the threshold and other procedural aspects of the establishment of intermediate EU parent undertakings, or IPUs, as laid down in the Capital Requirements Directive.
EC published Regulation 2021/25 that addresses amendments related to the financial reporting consequences of replacement of the existing interest rate benchmarks with alternative reference rates.
BIS published a bulletin, or a note, that examines the cyber threat landscape in the context of the pandemic and discusses policies to reduce risks to financial stability.
HM Treasury, also known as HMT, has updated the table containing the list of the equivalence decisions that came into effect in UK at the end of the transition period of its withdrawal from EU.