FCA Issues Insights on Cyber Resilience Practices in Financial Sector

By Regulatory News

March 08, 2019

FCA published a report on insights on the cyber resilience practices in the financial industry. The report presents examples of the cyber security practices that firms have shared with FCA. FCA hopes that these practices and experiences will help firms when considering where to prioritize their efforts in increasing cyber resilience.

Since 2017, FCA has brought together over 175 firms across different financial sectors to share information and ideas from their cyber experiences. FCA runs the Cyber Coordination Groups (CCGs) with industry to help improve cyber-security practices among members of the CCGs and their sectors. Over the last year, the groups have been discussing and sharing practices in the areas of Governance, Identification, Protection, Detection, Situational Awareness, Response and Recovery, and Testing. FCA has collated the examples shared by firms and set out those it considers to be beneficial for a wider audience under each of these themes:

Putting good governance in place
Identifying what needs to be protected
Protecting assets appropriately
Using good detection systems
Being aware of emerging threats and issues
Being ready to respond and recover
Testing and refining defenses

The insights in this publication may be relevant for small and medium-size firms. However, FCA encourages all firms to consider whether these insights may be useful to them. FCA warns that this document should not be considered as FCA guidance, as it does not set out the FCA expectations about what systems and controls firms should have in place to comply with its regulatory requirements. However, many of the shared examples support existing guidance from the National Cyber Security Center.

Related Links

Keywords: Europe, UK, Banking, Securities, Insurance, Cyber Resilience, Cyber Risk, Cyber Security, Regtech, FCA

ECB Updates Lists of Entities and National Identifiers Under AnaCredit

FDIC Updates Call Reports Implementing CECL Related Changes

News

ECB Allows Temporary Relief in Leverage Ratio Amid COVID-19 Pandemic

ECB published a decision allowing the euro area banks under its direct supervision to exclude certain central bank exposures from the leverage ratio.

September 21, 2020 WebPage Regulatory News

News

ESAs Launch Survey on Templates for Product Disclosures Under SFDR

ESAs launched a survey seeking feedback on the presentational aspects of product templates under the Sustainable Finance Disclosure Regulation (SFDR or Regulation 2019/2088).

September 21, 2020 WebPage Regulatory News

News

ECB Proposes Integrated Reporting Framework to Reduce Burden for Banks

ECB published input of the European System of Central Banks (ESCB) into the EBA feasibility report on reducing the reporting burden for banks in EU.

September 21, 2020 WebPage Regulatory News

News

ECB Finalizes Methodology to Assess CCR and A-CVA Risk of Banks

ECB finalized the guide on assessment methodology for the internal model method for calculating exposure to counterparty credit risk (CCR) and the advanced method for own funds requirements for credit valuation adjustment (A-CVA) risk.

September 18, 2020 WebPage Regulatory News

News

EBA Provides Opinion on Definition of Credit Institution in CRR

EBA published an Opinion addressed to EC to raise awareness about the opportunity to clarify certain issues related to the definition of credit institution in the upcoming review of the Capital Requirements Directive and Regulation (CRD and CRR).

September 18, 2020 WebPage Regulatory News

News

APRA Consults on Alignment of Daily Liquidity Report for Banks

APRA is consulting on updates to ARS 210.0, the reporting standard that sets out requirements for provision of information on liquidity and funding of an authorized deposit-taking institution.