The Cyber Security Advisory Panel (CSAP) of MAS met to discuss the latest cyber-security challenges and strategies related to the financial industry in Singapore. During the discussions chaired by the MAS Managing Director Ravi Menon, CSAP members highlighted the need to strengthen the cyber risk culture in financial institutions, enhance cyber monitoring and surveillance capabilities, and better manage cyber-security risks in IT supply chains.
The CSAP members at the meeting discussed ways to strengthen cyber risk culture. The members highlighted that the board and senior management of financial institutions should set clear expectations for cyber risk culture and monitor and assess how well the desired risk management culture is operating across the organization. CSAP members encouraged MAS to continue working with the industry to strengthen cyber monitoring and surveillance capabilities in the financial sector and deepen cyber intelligence-sharing networks with both global and local partners. Finally, IT supply chains were identified as a weakness, as these supply chains are increasingly being targeted and exploited by cyber criminals. CSAP members recommended that financial institutions should have in place an effective multi-layered defense with measures, such as source code reviews, system integrity checks, and network anomaly detection, to mitigate these risks.
The CSAP comprises leading international cyber-security experts who provide MAS with global perspectives on evolving cyber threats and the latest insights on strategies to address cyber risk. As part of the two-day program this year, CSAP members will meet the Minister in-charge of cyber-security, Mr S Iswaran, and participate in a half-day dialog with CEOs of key financial institutions in Singapore.
Keywords: Asia Pacific, Singapore, Banking, Fintech, Regtech, Cyber Risk, Risk Culture, Cyber Security, CSAP, MAS
Previous ArticleFIN-FSA Conducts Review on Organization of Depository Activities
PRA published the policy statement PS8/21, which contains the final supervisory statement SS3/21 on the PRA approach to supervision of the new and growing non-systemic banks in UK.
EBA published a report that sets out the final draft regulatory technical standards specifying the conditions according to which consolidation shall be carried out in line with Article 18 of the Capital Requirements Regulation (CRR).
EBA updated the list of other systemically important institutions (O-SIIs) in EU.
BCBS published two reports that discuss transmission channels of climate-related risks to the banking system and the measurement methodologies of climate-related financial risks.
UK Authorities (FCA and PRA) welcomed the findings of FSB peer review on the implementation of financial sector remuneration reforms in the UK.
PRA and FCA jointly issued a letter that highlights risks associated with the increasing volumes of deposits that are placed with banks and building societies via deposit aggregators and how to mitigate these risks.
MFSA announced that amendments to the Banking Act, Subsidiary Legislation, and Banking Rules will be issued in the coming months, to transpose the Capital Requirements Directive (CRD5) into the national regulatory framework.
EC finalized the Delegated Regulation 2021/598 that supplements the Capital Requirements Regulation (CRR or 575/2013) and lays out the regulatory technical standards for assigning risk-weights to specialized lending exposures.
OSFI launched a consultation to explore ways to enhance the OSFI assurance over capital, leverage, and liquidity returns for banks and insurers, given the increasing complexity arising from the evolving regulatory reporting framework due to IFRS 17 (Insurance Contracts) standard and Basel III reforms.
ECB published results of the benchmarking analysis of the recovery plan cycle for 2019.