The Cyber Security Advisory Panel (CSAP) of MAS met to discuss the latest cyber-security challenges and strategies related to the financial industry in Singapore. During the discussions chaired by the MAS Managing Director Ravi Menon, CSAP members highlighted the need to strengthen the cyber risk culture in financial institutions, enhance cyber monitoring and surveillance capabilities, and better manage cyber-security risks in IT supply chains.
The CSAP members at the meeting discussed ways to strengthen cyber risk culture. The members highlighted that the board and senior management of financial institutions should set clear expectations for cyber risk culture and monitor and assess how well the desired risk management culture is operating across the organization. CSAP members encouraged MAS to continue working with the industry to strengthen cyber monitoring and surveillance capabilities in the financial sector and deepen cyber intelligence-sharing networks with both global and local partners. Finally, IT supply chains were identified as a weakness, as these supply chains are increasingly being targeted and exploited by cyber criminals. CSAP members recommended that financial institutions should have in place an effective multi-layered defense with measures, such as source code reviews, system integrity checks, and network anomaly detection, to mitigate these risks.
The CSAP comprises leading international cyber-security experts who provide MAS with global perspectives on evolving cyber threats and the latest insights on strategies to address cyber risk. As part of the two-day program this year, CSAP members will meet the Minister in-charge of cyber-security, Mr S Iswaran, and participate in a half-day dialog with CEOs of key financial institutions in Singapore.
Keywords: Asia Pacific, Singapore, Banking, Fintech, Regtech, Cyber Risk, Risk Culture, Cyber Security, CSAP, MAS
Previous ArticleFED Updates FR Y-9C Form for September Reporting
ESAs published the final draft implementing technical standards on reporting of intra-group transactions and risk concentration of financial conglomerates subject to the supplementary supervision in EU.
EBA published the annual report on asset encumbrance of banks in EU.
FED updated the reporting form and instructions for the FR Y-9C report on consolidated financial statements for holding companies.
EBA issued a consultation paper on the guidelines on monitoring of the threshold and other procedural aspects of the establishment of intermediate EU parent undertakings, or IPUs, as laid down in the Capital Requirements Directive.
EC published Regulation 2021/25 that addresses amendments related to the financial reporting consequences of replacement of the existing interest rate benchmarks with alternative reference rates.
BIS published a bulletin, or a note, that examines the cyber threat landscape in the context of the pandemic and discusses policies to reduce risks to financial stability.
HM Treasury, also known as HMT, has updated the table containing the list of the equivalence decisions that came into effect in UK at the end of the transition period of its withdrawal from EU.
EBA published an erratum for technical package on phase 1 of the reporting framework 3.0.
APRA updated a frequently asked question (FAQ), for authorized deposit-taking institutions, on the measurement of credit risk weighted assets.
ECB published a letter from Andrea Enria, the Chair of the Supervisory Board of ECB, answering questions raised by the President of the Bundestag (the German federal parliament) on how ECB assesses the financial stability of the euro area in the context of the significant level of nonperforming loans.