The European Council adopted conclusions inviting the European Union (EU) and the member states to further develop the cybersecurity crisis management framework, including by exploring the potential of a joint cyber unit. In its conclusions, the Council emphasized the need to consolidate existing networks and to establish a mapping of possible information-sharing gaps and needs within and across cyber communities. This should subsequently lead to an agreement on possible primary objectives and priorities of a potential joint cyber unit.
As per the communication from the European Council, a potential joint cyber unit would need to respect the competences, mandates, and legal powers of its possible future participants and any participation by member states would be of a voluntary nature. The Council calls for further reflection on individual elements of the recommendation on the joint cyber unit, including regarding the ideas of EU cybersecurity rapid reaction teams and an EU cybersecurity incident and crisis response plan. The Council also stressed the need to establish adequate working methods and governance to allow for participation of all member states in the deliberations, development, and effective decision-making processes. It invites EU and its member states to engage in further developing the EU cybersecurity crisis management framework by exploring the potential of a Joint Cyber Unit initiative, by setting and defining the process, including milestones and a timeline, as well as clarifying the aims and possible roles and responsibilities.
The European Council has an instrumental role in the policy-making and coordination function for further development of the EU cybersecurity crisis management framework and will monitor the progress and provide guidance for complementing this framework. The European Commission (EC) published its recommendation on building a Joint Cyber Unit on June 23, 2021, to tackle the rising number of serious cyber incidents impacting public services as well as the life of businesses and citizens across EU. Under this recommendation, the joint cyber unit would act as a platform bringing together resources and expertise from different cyber communities in the EU and its member states to effectively prevent, deter and respond to mass cyber incidents.
Keywords: Europe, EU, Banking, Insurance, Securities, Joint Cyber Unit, Cyber Risk, Regtech, European Council, EC
Previous ArticleEC Sets Out Work Program for 2022
The European Banking Authority (EBA) launched the 2023 European Union (EU)-wide stress test, published annual reports on minimum requirement for own funds and eligible liabilities (MREL) and high earners with data as of December 2021.
The European Banking Authority (EBA) proposed implementing technical standards on the interest rate risk in the banking book (IRRBB) reporting requirements, with the comment period ending on May 02, 2023.
The U.S. Federal Reserve Board (FED) set out details of the pilot climate scenario analysis exercise to be conducted among the six largest U.S. bank holding companies.
The Board of Governors of the Federal Reserve System (FED) adopted the final rule on Adjustable Interest Rate (LIBOR) Act.
The European Central Bank (ECB) published an updated list of supervised entities, a report on the supervision of less significant institutions (LSIs), a statement on macro-prudential policy.
The Hong Kong Monetary Authority (HKMA) published a circular on the prudential treatment of crypto-asset exposures, an update on the status of transition to new interest rate benchmarks.
The European Commission (EC) adopted the standards addressing supervisory reporting of risk concentrations and intra-group transactions, benchmarking of internal approaches, and authorization of credit institutions.
The China Banking and Insurance Regulatory Commission (CBIRC) issued rules to manage the risk of off-balance sheet business of commercial banks and rules on corporate governance of financial institutions.
The Hong Kong Monetary Authority (HKMA) made announcements to address sustainability issues in the financial sector.
The European Banking Authority (EBA) published regulatory standards on identification of a group of connected clients (GCC) as well as updated the lists of identified financial conglomerates.