MAS proposed changes to the guidelines on technology risk management and business continuity management. The proposed changes take into account the rapidly changing physical and cyber threat landscape and will require financial institutions to put in place enhanced measures to strengthen operational resilience. The two guidelines continue to emphasize the importance of risk culture, along with the roles of Board of Directors and senior management in technology risk and business continuity management. The comment period for the proposed guidelines ends on April 08, 2019.
Under the technology risk management guidelines, the proposed changes relate to technology risk governance and oversight, effective cyber surveillance, secure software development, and emerging technologies. The proposals were developed in close partnership with the financial industry. The MAS Cyber Security Advisory Panel (CSAP), which comprises international cyber security thought leaders, provided valuable inputs in shaping these proposals.
The second consultation is on the business continuity management guidelines, which raise standards for financial institutions in the development of business continuity plans that will better account for interdependencies across financial institutions’ operational units and linkages with external service providers. Financial institutions are encouraged to put in place an independent audit program to regularly review the effectiveness of their efforts on business continuity management.
Comment Due Date: April 08, 2019
Keywords: Asia Pacific, Singapore, Banking, Securities, Business Continuity, Technology Risk, Cyber Security, Operational Risk, Cyber Risk, Regtech, MAS
Previous ArticleEC Welcomes Agreement on Sustainable Investment Disclosure Rules
Next ArticleBIS Announces Appointment of the New BCBS Chair
EC published the Implementing Regulation 2021/763 that lays down implementing technical standards for supervisory reporting and public disclosure of the minimum requirement for own funds and eligible liabilities (MREL).
EBA published a report that examines the convergence of prudential supervisory practices in 2020 and offers conclusions of the EBA college monitoring activity.
APRA announced the standardization of quarterly reporting due dates for authorized deposit-taking institutions.
The private sector working group of ECB on euro risk-free rates published the recommendations to address events that would trigger fallbacks in the Euro Interbank Offered Rate (EURIBOR)-related contracts, along with the €STR-based EURIBOR fallback rates (rates that could be used if a fallback is triggered).
Bundesbank published a list of "EntryPoints" that are accepted in its reporting system; the list provides taxonomy version and name of the module against each EntryPoint.
EBA published the phase 1 of its reporting framework 3.1, with the technical package covering the new reporting requirements for investment firms (under the implementing technical standards on investment firms reporting).
The Sustainable Finance Taskforce of IOSCO held two roundtables, with global stakeholders, on the IOSCO priorities to enhance the reliability, comparability, and consistency of sustainability-related disclosures and to collect views on the practical implementation of a global system architecture for these disclosures.
Asia Pacific Australia Banking APS 111 Capital Adequacy Regulatory Capital Basel RBNZ APRA
ESMA published the final guidelines on outsourcing to cloud service providers.
EBA published annual data for two key concepts and indicators in the Deposit Guarantee Schemes (DGS) Directive—available financial means and covered deposits.