MAS Proposes to Further Amend Business Continuity Guidelines
The Monetary Authority of Singapore (MAS) issued a second consultation on revisions to the guidelines on business continuity management, with the feedback period ending on November 15, 2021. This second consultation includes revisions to address feedback received from the first consultation published in 2019 and incorporates key lessons learned from the COVID-19 pandemic. It builds on policy intent from the first consultation to further emphasize the need for financial institutions to take an end-to-end view in ensuring the continuous delivery of critical business services and introduce principles and practices that financial institutions can implement to strengthen operational resilience. While this second consultation is ongoing, financial institutions are directed to continue to refer to the 2003 guidelines and supplementary guidance.
The proposals cover guidance on third-party dependencies; exposure to concentration risk when several of an institution's critical business functions are outsourced to a single provider; threat monitoring, review, and reporting; testing of business continuity management frameworks and undertake effective remedial actions; and responsibilities of Board and senior management. The guidelines stipulate that, in establishing recovery strategies, a financial institution should adopt an end-to-end view of the critical business services’ dependencies, to not only consider the recovery of individual processes, but the complete set of processes supporting the delivery of the service. This will minimize the degree of disruption, safeguard customer interests, and maintain the safety and soundness of financial institutions. Financial institutions should also ensure clear accountability and responsibility for the overall business continuity of each critical business service. Where the delivery of a business service depends on multiple business functions, an overall manager should be appointed to coordinate incident management across the affected functions and oversee the resumption of the business service in the event of a disruption.
Comment Due Date: November 15, 2021
Keywords: Asia Pacific, Singapore, Banking, Business Continuity, Guidance, Operational Risk, Cyber Risk, Outsourcing Arrangements, Cloud Service Providers, Regtech, MAS
Previous Article
BDF Updates Documentation for AnaCredit ReportingRelated Articles
BSP Tackles Aspects of Lending and Islamic, Open & Sustainable Finance
The Central Bank of the Philippines (BSP) issued communications covering developments related to online lending platforms, open finance framework and roadmap, and on the expected regulations in the area sustainable finance.
US Agencies Issue Regulatory Updates, FDIC Launches Tech Sprint
The Board of Governors of the Federal Reserve System (FED) published the final rule that amends Regulation I to reduce the quarterly reporting burden for member banks by automating the application process for adjusting their subscriptions to the Federal Reserve Bank capital stock, except in the context of mergers.
EBA Issues Guide on Bank Resolvability, Consults on Transferability
The European Banking Authority (EBA) published its assessment of risks through the quarterly Risk Dashboard and the results of the Autumn edition of the Risk Assessment Questionnaire (RAQ).
MFSA Publishes CRD5 Updates and Supervisory Priorities for 2022
The Malta Financial Services Authority (MFSA) updated the guidelines on supervisory reporting requirements under the reporting framework 3.0.
HKMA Extends Repayment for Trade Facilities, Consults on Crypto-Assets
The Hong Kong Monetary Authority (HKMA) published a circular, along with the reporting form and instructions, for self-assessment, by authorized institutions, of compliance with the Code of Banking Practice 2021.
FCA Registers Securitization Repositories; PRA Issues 2022 Priorities
The Financial Conduct Authority (FCA) decided to register European DataWarehouse Ltd and SecRep Limited as securitization repositories under the UK Securitization Regulation, with effect from January 17, 2022.
EC Regulation Sets Out Methods for Measuring K-Factors Under IFR
The European Commission (EC) published the Delegated Regulation 2022/25, which supplements the Investment Firms Regulation (IFR or Regulation 2019/2033) with respect to the regulatory technical standards specifying the methods for measuring the K-factors referred to in Article 15 of the IFR.
BIS Studies How Platform Models Impact Financial Stability & Inclusion
The Bank of International Settlements (BIS) published a paper that assesses the ways in which platform-based business models can affect financial inclusion, competition, financial stability and consumer protection.
CBE Issues Additional Measures to Ease Disruptions from Pandemic
The Central Bank of Egypt (CBE) published a circular with instructions on emergency liquidity assistance to banks that are unable to meet their liquidity requirements.
ESAs Publish List of Financial Conglomerates for 2021
The European Supervisory Authorities (ESAs) published the list of identified financial conglomerates for 2021.
