March 08, 2019

FCA published a report on insights on the cyber resilience practices in the financial industry. The report presents examples of the cyber security practices that firms have shared with FCA. FCA hopes that these practices and experiences will help firms when considering where to prioritize their efforts in increasing cyber resilience.

Since 2017, FCA has brought together over 175 firms across different financial sectors to share information and ideas from their cyber experiences. FCA runs the Cyber Coordination Groups (CCGs) with industry to help improve cyber-security practices among members of the CCGs and their sectors. Over the last year, the groups have been discussing and sharing practices in the areas of Governance, Identification, Protection, Detection, Situational Awareness, Response and Recovery, and Testing. FCA has collated the examples shared by firms and set out those it considers to be beneficial for a wider audience under each of these themes:

  • Putting good governance in place
  • Identifying what needs to be protected
  • Protecting assets appropriately
  • Using good detection systems
  • Being aware of emerging threats and issues
  • Being ready to respond and recover
  • Testing and refining defenses

The insights in this publication may be relevant for small and medium-size firms. However, FCA encourages all firms to consider whether these insights may be useful to them. FCA warns that this document should not be considered as FCA guidance, as it does not set out the FCA expectations about what systems and controls firms should have in place to comply with its regulatory requirements. However, many of the shared examples support existing guidance from the National Cyber Security Center. 

 

Related Links

Keywords: Europe, UK, Banking, Securities, Insurance, Cyber Resilience, Cyber Risk, Cyber Security, Regtech, FCA

Related Articles
News

ESAs Amend Technical Standards on Mapping of ECAIs Under CRR

ESAs published a second amendment to the implementing technical standards on the mapping of credit assessments of External Credit Assessment Institutions (ECAIs) for credit risk under the Capital Requirements Regulation (CRR).

May 20, 2019 WebPage Regulatory News
News

OCC Consults on Information Collection for Home Mortgage Disclosures

OCC is soliciting comment on the revision of the information collection titled “Regulation C—Home Mortgage Disclosure.” OCC also notes that it has sent the collection to OMB for review.

May 20, 2019 WebPage Regulatory News
News

EIOPA Updates Q&A on Regulations in May 2019

EIOPA published additional questions and answers (Q&A) on guidelines, directives, and regulations applicable to insurers in Europe.

May 17, 2019 WebPage Regulatory News
News

FSB Publishes Update on Meeting of RCG for Americas

FSB published a summary of the meeting of its Regional Consultative Group (RCG) in Americas.

May 17, 2019 WebPage Regulatory News
News

IASB Issues Work Plan and Meeting Updates for May 2019

IASB published an updated work plan, along with the update of its meeting in May 2019.

May 17, 2019 WebPage Regulatory News
News

FCA Publishes Its Business Plan for the Coming Year

FCA published its Business Plan, which sets out the main areas of focus and priorities for 2019/20.

May 17, 2019 WebPage Regulatory News
News

CFTC Proposes to Amend Derivatives Clearing Organization Regulations

CFTC proposed amendments to certain regulations applicable to registered derivatives clearing organizations (DCOs) under Part 30 of the CFTC regulations.

May 16, 2019 WebPage Regulatory News
News

APRA Licenses Societe Generale As Foreign Deposit-Taking Institution

APRA granted Societe Generale a license to operate as a foreign authorized deposit-taking institution under the Banking Act of 1959.

May 16, 2019 WebPage Regulatory News
News

EBA Provides Updates on Its Work on Basel III Impact Assessment in EU

EBA is working to finalize the impact assessment on implementation of Basel III standards, in response to the EC call for advice, which was received on May 04, 2018.

May 16, 2019 WebPage Regulatory News
News

ISDA Publishes Two Consultations on Benchmark Fallbacks

ISDA published two consultations on benchmark fallbacks, the comment periods for which expire on July 12, 2019.

May 16, 2019 WebPage Regulatory News
RESULTS 1 - 10 OF 3097