MAS Consults on Measures to Strengthen Cyber Resilience of FIs
MAS issued for consultation the proposed requirements for financial institutions (FIs) in Singapore to implement essential cyber security measures to protect their IT systems. These requirements will help FIs to strengthen their cyber resilience and guard against cyber attacks. The public consultation ends on October 05, 2018.
These measures, which are already part of the existing MAS Technology Risk Management Guidelines, are aimed at enhancing the security of FIs’ systems and networks as well as mitigating the risk of unauthorized use of system accounts with extensive access privileges. MAS is proposing to stipulate these measures as a baseline hygiene standard for cyber security by elevating them into legally binding requirements. FIs will be required to implement the following six cyber security measures:
- Address system security flaws in a timely manner
- Establish and implement robust security for systems
- Deploy security devices to secure system connections
- Install anti-virus software to mitigate the risk of malware infection
- Restrict the use of system administrator accounts that can modify system configurations
- Strengthen user authentication for system administrator accounts on critical systems
Comment Due Date: October 05, 2018
Keywords: Asia Pacific, Singapore, Banking, Insurance, Securities, Regtech, Cyber Resilience, Cyber Risk, MAS
Related Articles
ECB Allows Temporary Relief in Leverage Ratio Amid COVID-19 Pandemic
ECB published a decision allowing the euro area banks under its direct supervision to exclude certain central bank exposures from the leverage ratio.
ESAs Launch Survey on Templates for Product Disclosures Under SFDR
ESAs launched a survey seeking feedback on the presentational aspects of product templates under the Sustainable Finance Disclosure Regulation (SFDR or Regulation 2019/2088).
ECB Proposes Integrated Reporting Framework to Reduce Burden for Banks
ECB published input of the European System of Central Banks (ESCB) into the EBA feasibility report on reducing the reporting burden for banks in EU.
ECB Finalizes Methodology to Assess CCR and A-CVA Risk of Banks
ECB finalized the guide on assessment methodology for the internal model method for calculating exposure to counterparty credit risk (CCR) and the advanced method for own funds requirements for credit valuation adjustment (A-CVA) risk.
EBA Provides Opinion on Definition of Credit Institution in CRR
EBA published an Opinion addressed to EC to raise awareness about the opportunity to clarify certain issues related to the definition of credit institution in the upcoming review of the Capital Requirements Directive and Regulation (CRD and CRR).
APRA Consults on Alignment of Daily Liquidity Report for Banks
APRA is consulting on updates to ARS 210.0, the reporting standard that sets out requirements for provision of information on liquidity and funding of an authorized deposit-taking institution.
FED Releases Scenarios for Second Round of Stress Tests on Banks
FED released hypothetical scenarios for a second round of stress tests for banks.
FED to Temporarily Revise FR Y-14 Reports to Conduct Stressed Analysis
FED is proposing to temporarily revise the capital assessments and stress testing reports (FR Y-14A/Q/M) to implement the changes necessary to conduct stressed analysis in connection with the re-submission of capital plans, using data as of June 30, 2020.
FED Revises Information Collection Under Market Risk Capital Rule
FED adopted a proposal to extend for three years, with revision, the information collection under the market risk capital rule (FR 4201; OMB No. 7100-0314).
EBA Seeks Input on ESG Disclosure Practices of Banks
EBA published a voluntary online survey seeking input from credit institutions on their practices and future plans for Pillar 3 disclosures on the environmental, social, and governance (ESG) risks.
