April 10, 2018

FFIEC members (FED, CFPB, FDIC, NCUA, OCC, and State Liaison Committee) issued a joint statement to describe the matters that financial institutions should consider when determining whether to use cyber insurance as a component of their risk management programs. The FFIEC members do not require financial institutions to maintain cyber insurance. The evolving cyber insurance market and the shifting cyber threat landscape may, however, prompt financial institutions to consider whether cyber insurance would be an effective part of their overall risk management programs.

The joint statement notes that cyber-attacks are increasing in volume and sophistication and that traditional general liability insurance policies may not provide effective coverage for all potential exposures caused by cyber events. Cyber insurance could offset financial losses from a variety of exposures—including data breaches resulting in the loss of confidential information—that may not be covered by more traditional insurance policies. Financial institution management should assess the scope of coverage of current insurance and consider how cyber insurance may fit into the overall risk management framework of an institution. As with any insurance coverage, cyber insurance does not diminish the importance of a sound control environment. Rather, cyber insurance may be a component of a broader risk management strategy, which includes identifying, measuring, mitigating, and monitoring cyber risk exposure.

 

Related Links

Keywords: Americas, US, Banking, PMI, Cyber Insurance, Risk Management, FFIEC

Related Articles
News

EC Amends Regulation Supplementing Solvency II Directive

EC published the Delegated Regulation (EU) 2019/981 that amends the Regulation (EU) 2015/35, which supplements Solvency II Directive (2009/138/EC) on the taking-up and pursuit of the business of insurance and reinsurance.

June 18, 2019 WebPage Regulatory News
News

IOSCO Report Examines Application of International Cyber Standards

IOSCO published a final report that examines the application of the three internationally recognized cyber standards and frameworks by IOSCO member jurisdictions.

June 18, 2019 WebPage Regulatory News
News

PRA Launches 2019 Stress Test Exercise for Life and General Insurers

PRA has launched the biennial insurance stress test and is asking the largest regulated life and general insurers to provide information about the impact of a range of stress tests on their business.

June 18, 2019 WebPage Regulatory News
News

PRA Finalizes Reporting Amendments to Pillar 2 Liquidity Framework

PRA published the final Policy Statement PS13/19 on regulatory reporting amendments and clarifications to the Pillar 2 liquidity framework for banks in UK.

June 17, 2019 WebPage Regulatory News
News

FSB Assesses Implementation of Compensation Standards and Principles

FSB published the sixth progress report on the implementation of its principles and standards for sound compensation practices in financial institutions.

June 17, 2019 WebPage Regulatory News
News

IMF Publishes Reports on 2019 Article IV Consultation with Ireland

IMF published its staff report and selected issues report under the 2019 Article IV consultation with Ireland.

June 17, 2019 WebPage Regulatory News
News

EBA Updates Data on Deposit Guarantee Schemes in EU

EBA published the 2018 data on two key concepts in the Deposit Guarantee Schemes Directive (DGSD)—namely, available financial means and covered deposits.

June 17, 2019 WebPage Regulatory News
News

SNB Updates Form for Reporting Solvency Risk of Counterparties

SNB published the survey (Form Release 5.01) and related documentation for reporting solvency risk of counterparties in the interbank sector (ARIS).

June 17, 2019 WebPage Regulatory News
News

ISDA Studies Variation in Global Implementation of Margin Requirements

ISDA published a paper that highlights the main areas of difference in the implementation of margin requirements for non-cleared derivatives across jurisdictions and makes recommendations on how to resolve these variations.

June 17, 2019 WebPage Regulatory News
News

US Agencies Finalize Rule to Streamline Reporting for Small Banks

US Agencies (FDIC, FED, and OCC) adopted a final rule to streamline the regulatory reporting requirements for small institutions.

June 17, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 3265