ECB published the European framework for Threat Intelligence-Based Ethical Red Teaming (TIBER-EU). TIBER-EU is the first Europe-wide framework for controlled and bespoke tests against cyber attacks in the financial market. This framework enables European and national authorities to work with financial entities to put in place a program to test and improve their resilience against sophisticated cyber attacks.
The TIBER-EU framework facilitates a harmonized European approach toward intelligence-led tests which mimic the tactics, techniques, and procedures of real hackers who can be a genuine threat. TIBER-EU-based tests simulate a cyber attack on an entity’s critical functions and underlying systems, such as its people, processes, and technologies. This helps the entity to assess its protection, detection, and response capabilities against potential cyber attacks, thus enabling it to learn and evolve to a higher level of cyber maturity. The TIBER-EU framework has been designed for national and European authorities and entities that form the core financial infrastructure, including entities with cross-border activities which fall within the regulatory remit of several authorities. The framework can be used for any type of financial-sector entity. For the purposes of the TIBER-EU framework, entities include payment systems, central securities depositories, central counterparty clearing houses, trade repositories, credit rating agencies, stock exchanges, securities settlement platforms, banks, payment institutions, insurance companies, asset management companies and any other service providers deemed critical for the functioning of the financial sector.
Keywords: Europe, EU, Banking, Insurance, Securities, PMI, Cyber Risk, TIBER-EU, Cyber Resilience, ECB
Previous ArticleEIOPA Publishes Report on Oversight Activities in 2017
RBNZ published the financial stability report for May 2020. This review of the financial system in the country highlights that the economic disruption associated with COVID-19 will present challenges to the financial system.
Financial policymakers and international standard-setters met virtually with private-sector executives to discuss international policy responses to COVID-19 pandemic.
HKMA is consulting on revisions to the Supervisory Policy Manual module CR-G-14 on margin and other risk mitigation standards for non-centrally cleared over-the-counter (OTC) derivatives transactions.
EBA published thematic note presenting a preliminary assessment of the impact of COVID-19 outbreak on the banking sector in EU.
HKMA published a circular, addressed to authorized institutions, on the application of the Basel Committee guidance on certain COVID-related measures.
PRA provided further information on the application of regulatory capital and IFRS 9 requirements to payment holidays granted or extended to address the challenges arising from COVID-19 outbreak.
PRA published final policy (in PS13/20) setting out the approach and expectations for authorization and supervision of insurance special purpose vehicles (ISPVs or insurance SPVs).
BoE published version 2.0.1 of the Capital+ XBRL Utility, along with the related release notes.
HKMA announced the publication of a report on fintech adoption and innovation in the banking industry in Hong Kong.
BIS published a working paper that examines the drivers of cyber risk, especially in context of the cloud services.