General Information & Client Service
  • Americas: +1.212.553.1653
  • Asia: +852.3551.3077
  • China: +86.10.6319.6580
  • EMEA: +44.20.7772.5454
  • Japan: +81.3.5408.4100
Media Relations
  • New York: +1.212.553.0376
  • London: +44.20.7772.5456
  • Hong Kong: +852.3758.1350
  • Tokyo: +813.5408.4110
  • Sydney: +61.2.9270.8141
  • Mexico City: +001.888.779.5833
  • Buenos Aires: +0800.666.3506
  • São Paulo: +0800.891.2518
October 13, 2017

FSB published the results of a stocktake on cybersecurity regulations, guidance, and supervisory practices. FSB published two reports: a summary report and a detailed analysis of the results of the stocktake. The reports are informed by the responses of FSB member jurisdictions and international bodies to a survey conducted by FSB. The summary report also sets out key themes raised in an FSB workshop in September that brought together public and private sector participants to discuss cybersecurity in the financial sector.

The stocktake had been delivered to this week’s meeting of G20 Finance Ministers and Central Bank Governors in Washington DC. To enhance cross-border cooperation, the G20, at its March 2017 meeting in Baden-Baden, had asked FSB, as a first step, to perform the stocktake. FSB member jurisdictions have been active in addressing cybersecurity, with all member jurisdictions having released regulations or guidance that address cybersecurity for the financial sector. Findings of the FSB stocktake include:

  • All FSB member jurisdictions report drawing on a small body of previously developed national or international guidance or standards when developing their own regulatory or supervisory schemes for the financial sector.
  • Two-third of the reported regulatory schemes take a targeted approach to cybersecurity and/or information technology risk and one-third address operational risk generally.
  • Some elements commonly covered by regulatory schemes targeted to cybersecurity include risk assessment, regulatory reporting, role of the board, third-party interconnections, system access controls, incident recovery, testing, and training.
  • Jurisdictions remain active in further developing their regulation and guidance. Seventy-two percent of jurisdictions report plans to issue new regulations, guidance, or supervisory practices that address cybersecurity for the financial sector within the next year.
  • International bodies also have been active in addressing cybersecurity for the financial sector. There are a number of similarities across the international guidance issued by different sectoral standard-setting bodies and other international organizations. Many of the same topics are addressed, including governance, risk analysis and assessment, information security, expertise and training, incident response and recovery, communications and information sharing, and oversight of interconnections.


Related Links (PDFs)

Keywords: International, Banking, Cyber Risk, Cybersecurity Regulations, Fintech, FSB

Related Insights

US Agencies Propose Revisions to FFIEC Reports 031, 041, 051, and 101

US Agencies (FDIC, FED, and OCC) propose to extend for three years, with revision, FFIEC 031, FFIEC 041, FFIEC 051, and FFIEC 101.

February 21, 2019 WebPage Regulatory News

OFR Adopts Data Collection Rule on Centrally Cleared Repo Transactions

OFR adopted a final rule to establish a data collection covering centrally cleared funding transactions in the U.S. repurchase agreement (repo) market.

February 20, 2019 WebPage Regulatory News

FHFA Finalizes Rule on Federal Home Loan Bank Capital Requirements

FHFA published, in Federal Register, the final rule to adopt, as its own, portions of the regulations of the Federal Housing Finance Board pertaining to the capital requirements for the Federal Home Loan Banks.

February 20, 2019 WebPage Regulatory News

PRA Publishes PS4/19 on Loss-Absorbency Mechanism Under Solvency II

PRA published a policy statement (PS4/19) that provides feedback on responses to the consultation paper (CP27/18) on adjusting for the reduction of loss absorbency where own fund instruments are taxed on write down under Solvency II.

February 20, 2019 WebPage Regulatory News

SRB Publishes Framework for Performing Valuations in Resolution

The framework provides independent valuers and the general public with an indication of the expectations of SRB on the principles and methodologies for valuation reports, as set out in the legal framework.

February 19, 2019 WebPage Regulatory News

BIS Paper on Effect of Securities Lending on OTC Market Liquidity

BIS published a working paper that studies how securities lending affects over-the-counter market (OTC) liquidity.

February 19, 2019 WebPage Regulatory News

US Agencies Extend Consultation Period for the Proposed SA-CCR

US Agencies (FDIC, FED, and OCC) extended the comment period for a proposed rule to update their standards for how firms measure counterparty credit risk posed by derivative contracts.

February 18, 2019 WebPage Regulatory News

FED Extends Consultation Period for Stress Testing Rule

FED has published in the Federal Register a notice proposing amendments to the company run and supervisory stress test rules.

February 15, 2019 WebPage Regulatory News

EBA Single Rulebook Q&A: Third Update for February 2019

EBA published answers to two questions under the Single Rulebook question and answer (Q&A) updates for this week.

February 15, 2019 WebPage Regulatory News

SEC Proposes Rule on Risk Mitigation Techniques for Uncleared SBS

SEC proposed a rule that would require the application of specific risk-mitigation techniques to portfolios of security-based swaps (SBS) that are not submitted for clearing.

February 15, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 2623