FSB published a progress report on its work on developing effective practices for financial institutions’ response to, and recovery from, a cyber incident. FSB has delivered the report to G20 Finance Ministers and Central Bank Governors, ahead of their meetings in Fukuoka on June 8-9. As part of its work program to enhance the cyber resilience of financial institutions, FSB is developing a toolkit of effective practices for a financial institution’s response to, and recovery from, a cyber incident. The toolkit aims to help supervisors and other relevant authorities in supporting financial institutions before, during, and after a cyber incident.
This project seeks to mitigate the implications of cyber incidents on financial stability, by taking into account their cross-border and cross-sectoral nature. It will also leverage on the shared experience and diversity of perspectives gathered in the course of this work. The development of effective practices will draw on a stocktake of publicly released guidance from national authorities and international bodies, a review of case studies on past cyber incidents, and engagements with external stakeholders.
The development of the toolkit of effective practices for financial institution’s response to, and recovery from, a cyber incident will be taken forward in two phases. The first phase of work will continue until October 2019 and focus on identifying and developing effective practices. As part of its outreach, FSB will launch an online survey in July, which will help to identify effective practices at financial institutions. The second phase of work will likely commence during the last quarter of this year and will focus on drafting of the toolkit. A public consultation on the report will be launched in early 2020 and the toolkit of effective practices will be finalized in late 2020.
Keywords: International, Banking, Insurance, Securities, PMI, Cyber Incident, Financial Stability, G20, Cyber Risk, Cyber Resilience, FSB
Previous ArticleFSB Report Reviews Implementation of Legal Entity Identifier
EC published the Implementing Regulation 2021/763 that lays down implementing technical standards for supervisory reporting and public disclosure of the minimum requirement for own funds and eligible liabilities (MREL).
EBA published a report that examines the convergence of prudential supervisory practices in 2020 and offers conclusions of the EBA college monitoring activity.
APRA announced the standardization of quarterly reporting due dates for authorized deposit-taking institutions.
The private sector working group of ECB on euro risk-free rates published the recommendations to address events that would trigger fallbacks in the Euro Interbank Offered Rate (EURIBOR)-related contracts, along with the €STR-based EURIBOR fallback rates (rates that could be used if a fallback is triggered).
Bundesbank published a list of "EntryPoints" that are accepted in its reporting system; the list provides taxonomy version and name of the module against each EntryPoint.
EBA published the phase 1 of its reporting framework 3.1, with the technical package covering the new reporting requirements for investment firms (under the implementing technical standards on investment firms reporting).
The Sustainable Finance Taskforce of IOSCO held two roundtables, with global stakeholders, on the IOSCO priorities to enhance the reliability, comparability, and consistency of sustainability-related disclosures and to collect views on the practical implementation of a global system architecture for these disclosures.
Asia Pacific Australia Banking APS 111 Capital Adequacy Regulatory Capital Basel RBNZ APRA
ESMA published the final guidelines on outsourcing to cloud service providers.
EBA published annual data for two key concepts and indicators in the Deposit Guarantee Schemes (DGS) Directive—available financial means and covered deposits.