Featured Product

    OSFI Revises Guidance on G-SIB Disclosure and Cyber Incident Reporting

    August 13, 2021

    The Office of the Superintendent of Financial Institutions (OSFI) published final revisions to its advisory on public disclosure requirements for global systemically important banks (G-SIBs). OSFI also published an updated cyber-security self-assessment template to help federally regulated financial institutions gauge and improve their current state of readiness in the face of emerging and expanding cyber threats. The self-assessment template covers criteria for reviewing third-party providers, including the providers of cloud services. It examines the capability of a financial institution to respond to a cyber incident in areas ranging from organization and resources, to how it manages threats, risks, and incidents, and allows an institution to rate each element on a scale from non-existent to continuous improvement. In a related development, OSFI updated the requirements governing how federally regulated financial institutions should disclose and report technology and cyber-security incidents to OSFI.

    The updated advisory on technology and cyber-security incident reporting, which becomes effective from August 13, 2021, supports a coordinated and integrated response to technology and cyber-security incidents when they occur at federally regulated financial institutions. As updated, the federally regulated financial institutions must report a technology or cyber-security incident to the Technology Risk Division of OSFI as well as their Lead Supervisor at OSFI within 24 hours. Other changes to the advisory include a new "failure to report" section. In case a federally regulated financial institution does not report a cyber incident, it could be subject to increased supervisory oversight by OSFI, could be placed on a watchlist, or could be assigned one of the stages in the OSFI supervisory intervention approach, among other measures. 

    The revised advisory on G-SIB disclosures addresses changes to the disclosure requirements included in the updated assessment methodology of the Basel Committee on Banking Supervision, which was published in July 2018 and will take effect for the 2022 G-SIB assessment exercise; the key changes relate to the new Trading Volume indicator and the inclusion of insurance activities for certain existing G-SIB indicators. The revised advisory also provides guidance on the availability of publicly disclosed G-SIB indicators and the nature of qualitative information to accompany the disclosure requirements. This advisory applies to federally regulated banks with a Basel III leverage ratio exposure measure (including exposures arising from insurance subsidiaries) exceeding EUR 200 billion at financial year-end, or a bank that was included in the assessment sample by OSFI based on supervisory judgment.

     

    Related Links

    Keywords: Americas, Canada, Banking, G-SIBs, Basel, Incident Reporting, Reporting, Cyber Risk, Regulatory Capital, Self-Assessment Template, OSFI

    Featured Experts
    Related Articles
    News

    EBA Clarifies Use of COVID-19-Impacted Data for IRB Credit Risk Models

    The European Banking Authority (EBA) published four draft principles to support supervisory efforts in assessing the representativeness of COVID-19-impacted data for banks using the internal ratings based (IRB) credit risk models.

    June 21, 2022 WebPage Regulatory News
    News

    EP Reaches Agreement on Corporate Sustainability Reporting Directive

    The European Council and the European Parliament (EP) reached a provisional political agreement on the Corporate Sustainability Reporting Directive (CSRD).

    June 21, 2022 WebPage Regulatory News
    News

    PRA Consults on Model Risk Management Principles for Banks

    The Prudential Regulation Authority (PRA) launched a consultation (CP6/22) that sets out proposal for a new Supervisory Statement on expectations for management of model risk by banks.

    June 21, 2022 WebPage Regulatory News
    News

    EC Regulation Amends Standards for Calculating Credit Risk Adjustments

    The European Commission (EC) published the Delegated Regulation 2022/954, which amends regulatory technical standards on specification of the calculation of specific and general credit risk adjustments.

    June 21, 2022 WebPage Regulatory News
    News

    BIS Hub Updates Work Program for 2022, Announces New Projects

    The Bank for International Settlements (BIS) Innovation Hub updated its work program, announcing a set of projects across various centers.

    June 17, 2022 WebPage Regulatory News
    News

    EIOPA Issues Cyber Underwriting Proposal, Statement on Open Insurance

    The European Insurance and Occupational Pensions Authority (EIOPA) published two consultation papers—one on the supervisory statement on exclusions related to systemic events and the other on the supervisory statement on the management of non-affirmative cyber exposures.

    June 17, 2022 WebPage Regulatory News
    News

    US Senate Members Seek Details on SEC Proposed Climate Disclosure Rule

    Certain members of the U.S. Senate Committee on Banking, Housing, and Urban Affairs issued a letter to the Securities and Exchange Commission (SEC)

    June 16, 2022 WebPage Regulatory News
    News

    EIOPA Consults on Review of Securitization Framework in Solvency II

    The European Insurance and Occupational Pensions Authority (EIOPA) published a consultation paper on the advice on the review of the securitization prudential framework in Solvency II.

    June 16, 2022 WebPage Regulatory News
    News

    UK Authorities Issue Regulatory and Reporting Updates for Banks

    The Prudential Regulation Authority (PRA) issued a statement on PRA buffer adjustment while the Bank of England (BoE) published a notice on the statistical reporting requirements for banks.

    June 15, 2022 WebPage Regulatory News
    News

    BCBS Issues Climate Risk Principles while HKMA Expresses Its Support

    The Basel Committee on Banking Supervision (BCBS) issued principles for the effective management and supervision of climate-related financial risks.

    June 15, 2022 WebPage Regulatory News
    RESULTS 1 - 10 OF 8280