Featured Product

    FDIC and OCC Issue Statement on Heightened Cyber Security Risk

    January 16, 2020

    In response to the heightened cyber-security risk facing the financial services industry and other critical business sectors, FDIC and OCC issued an interagency statement on heightened cyber-security risk. The agencies issued this statement to remind supervised financial institutions of sound cyber-security risk management principles that can reduce the risk of a cyber-attack and minimize business disruptions.

    These principles elaborate on standards articulated in the Interagency Guidelines Establishing Information Security Standards as well as resources provided by FFIEC, such as the Statement on Destructive Malware. While preventive controls are important, financial institution management should be prepared for a worst-case scenario and maintain sufficient business continuity planning processes for the rapid recovery, resumption, and maintenance of the operations of an institution. The following are the key highlights of the statement:

    • The Department of Homeland Security has indicated there is heightened risk of cyber-attack against U.S. targets because of increased geopolitical tension.
    • The current environment provides an opportunity for banks to re-evaluate the adequacy of safeguards to protect against various types of cyber-security risk.
    • The attached Heightened Cybersecurity Risk document highlights principles previously articulated by FDIC and other banking regulators including: business resilience, authentication, system configuration, security tool, data protection, and employee training.
    • When banks apply cyber-security risk management principles and risk mitigation techniques, they reduce the risk of the success of a cyber attack and minimize the negative impacts of a disruptive and destructive cyber attack.

     

    Related Links

    Keywords: Americas, US, Banking, Cyber Risk, Cyber Attack, Business Continuity, Cyber Security, OCC, FDIC

    Related Articles
    News

    APRA Plans to Assess Climate Risks and Develop Prudential Guidance

    APRA published a letter that outlines its plans to undertake a climate change vulnerability assessment and develop a prudential practice guide focused on climate-related financial risks.

    February 24, 2020 WebPage Regulatory News
    News

    FDIC Publishes Guide to Help with Third-Party Risk Management

    The technology lab of FDIC (FDiTech) published a new guide to help financial technology, or fintech, companies and others partner with banks.

    February 24, 2020 WebPage Regulatory News
    News

    APRA to Transition to Annual Stress Testing of Large Banks in 2020

    APRA published key findings of the stress testing assessment conducted on authorized deposit-taking institutions.

    February 21, 2020 WebPage Regulatory News
    News

    IAIS Statement on Monitoring Period of Insurance Capital Standard

    IAIS published a statement from its Secretary General Jonathan Dixon on the Insurance Capital Standard (ICS) monitoring period.

    February 21, 2020 WebPage Regulatory News
    News

    EC Consults on Review of Non-Financial Reporting Directive

    EC is launched a consultation on the review of the Non-Financial Reporting Directive or NFRD (Directive 2014/95/EU, as part of its strategy to strengthen sustainable investment in Europe.

    February 20, 2020 WebPage Regulatory News
    News

    EIOPA Consults on Standards for Supervisory Reporting Under PEPP Rule

    EIOPA is consulting on the implementing technical standards for supervisory reporting and cooperation, as mandated by the Pan-European Personal Pension Product (PEPP) Regulation (Regulation 2019/1238).

    February 20, 2020 WebPage Regulatory News
    News

    EIOPA Publishes Statement on Adverse Interest Rate Environment

    EIOPA published a supervisory statement on the impact of the ultra-low or negative interest rate environment on the insurance sector in EU.

    February 20, 2020 WebPage Regulatory News
    News

    ECB Report on Transfer of Liquidity from EONIA Products to €STR

    ECB published a report on the transfer of liquidity from the cash and derivatives products of the Euro Overnight Index Average (EONIA) to the Euro Short-Term Rate (€STR).

    February 19, 2020 WebPage Regulatory News
    News

    ESRB Publishes Report on Systemic Cyberattacks

    ESRB published a report that explores systemic implications of cyber incidents, such as cyberattacks.

    February 19, 2020 WebPage Regulatory News
    News

    FSB Chair Sets Out Key Deliverables for G20 Presidency of Saudi Arabia

    FSB published a letter from the Chair Randal K. Quarles to the G20 finance ministers and Central Bank governors ahead of the meetings in Riyadh on February 22-23.

    February 19, 2020 WebPage Regulatory News
    RESULTS 1 - 10 OF 4720