Press release
Press enquiries: +41 61 280 8188 [email protected] www.bis.org Ref no: IOSCO/MR/44/2015 24 November 2015 CPMI-IOSCO consultative paper *Guidance on cyber resilience for financial market infrastructures* The Committee on Payments and Market Infrastructures (CPMI)1 and the Board of the International Organization of Securities Commissions (IOSCO)2 today released the consultative paper *Guidance on cyber resilience for financial market infrastructures* <http://t.sidekickopen29.com/e1t/c/5/f18dQhb0S7lC8dDMPbW2n0x6l2B9nMJN7t5XX4RrRJ0W3LyBlq3M2z18W4XHqpM56dHcqf3wwXv802?t=https%3A%2F%2Fwww.iosco.org%2Flibrary%2Fpubdocs%2Fpdf%2FIOSCOPD513.pdf&si=4818764826673152&pi=562f7101-8870-48b5-a6f4-957a75d51f5a> (“the Cyber Guidance”).3 Financial market infrastructures (FMIs) play a critical role in promoting the stability of the financial system. Thus, the cyber risks faced by FMIs and their level of readiness to effectively deal with worst case scenarios have been considered top priorities by industry leaders and authorities alike. The Cyber Guidance aims to add momentum to and instil international consistency in the industry’s ongoing efforts to enhance FMIs’ ability to pre-empt cyber attacks, respond rapidly and effectively to them, and achieve faster and safer target recovery objectives if they succeed. Key concepts built into the Cyber Guidance include the following: · Board and senior management attention is critical to a successful cyber resilience strategy. · The ability to resume operations quickly and safely after a successful cyber attack is paramount. · FMIs should make use of good-quality threat intelligence and rigorous testing. · Cyber resilience requires a process of continuous improvements. · Cyber resilience cannot be achieved by an FMI alone; it is a collective endeavour of the whole “ecosystem”. The Cyber Guidance builds on previous studies conducted in this area by both the CPMI and IOSCO.4 When finalised, the Cyber Guidance will not establish additional standards for FMIs beyond those already set out in the Principles for Financial Market Infrastructures (PFMI). Instead, the document is intended to be supplemental to the PFMI, primarily in the context of governance (Principle 2), the framework for the comprehensive management of risks (Principle 3), settlement finality (Principle 8), operational risk (Principle 17) and FMI links (Principle 20). The proposed Cyber Guidance sets out the preparations and measures that FMIs should undertake to enhance their cyber resilience capabilities with the aim of limiting the escalating risks that cyber threats pose to individual FMIs and thereby to financial stability. It also provides authorities with a set of internationally agreed guidelines to support consistent and effective oversight and supervision of FMIs in the area of cyber risk. The Cyber Guidance is primarily intended to create meaningful shifts in the FMI industry towards greater cyber resilience. In this regard, Mr Benoît Cœuré, Chairman of the CPMI, stated: “This is an important report because cyber attacks in the financial sector have the potential to create widespread financial instability. Nobody should assume they will be able to prevent cyber attacks in all circumstances. Therefore, the Cyber Guidance addresses the need for an FMI to resume its operations quickly and safely after an attack has occurred. This is not an easy task and may require innovative thinking that goes beyond the traditional approaches to operational resilience.” Mr Greg Medcraft, Chairman of IOSCO, added: “The proposed Cyber Guidance is the culmination of extensive collaboration between IOSCO and the CPMI. It reflects an urgency to address the increasing risks that cyber threats pose to FMIs and financial stability, as well as the need for a coordinated approach. At the FMI level too, cyber resilience cannot be achieved by individual institutions alone in our highly interconnected financial sector. The broader ‘ecosystem’ needs to work in unison. The Guidance calls upon the ecosystem to do just that. We hope to collaborate with all stakeholders to meaningfully enhance the cyber resilience of our financial system as we refine these proposals and later implement them.” The consultative report is available on the websites of the Bank for International Settlements (www.bis.org) and IOSCO (www.iosco.org). Comments on the report should be submitted *by* *Tuesday 23 February 2016* *via e-mail* to *both* the CPMI Secretariat ([email protected]) and the IOSCO Secretariat ([email protected]). All comments may be published on the websites of the Bank for International Settlements and IOSCO unless a commenter specifically requests confidential treatment. *Notes* 1. The CPMI promotes the safety and efficiency of payment, clearing, settlement and related arrangements, thereby supporting financial stability and the wider economy. The CPMI monitors and analyses developments in these arrangements, both within and across jurisdictions. It also serves as a forum for central bank cooperation in related oversight, policy and operational matters, including the provision of central bank services. The CPMI is a global standard setter in this area. The CPMI secretariat is hosted by the BIS. More information about the CPMI, and all its publications, can be found on the BIS website. 2. IOSCO is an international policy forum for securities regulators. Its objective is to review major regulatory issues related to international securities and futures transactions and to coordinate practical responses to these concerns. 3. The Cyber Guidance was prepared for the CPMI and IOSCO by a working group comprising representatives from CPMI central banks and IOSCO securities commissions. The working group is co-chaired by Coen Voormeulen (Director, Cash and Payments Division, Netherlands Bank) and Hern Shin Ho (Executive Director, Specialist Risk Department, Monetary Authority of Singapore). 4. Please see also CPMI, *Cyber resilience in financial market infrastructures* <http://t.sidekickopen29.com/e1t/c/5/f18dQhb0S7lC8dDMPbW2n0x6l2B9nMJN7t5XX4RrRJ0W3LyBlq3M2z18W4XHqpM56dHcqf3wwXv802?t=http%3A%2F%2Fwww.bis.org%2Fcpmi%2Fpubl%2Fd122.htm&si=4818764826673152&pi=562f7101-8870-48b5-a6f4-957a75d51f5a>, November 2014; and IOSCO, *Cyber-crime, securities markets and systemic risk* <http://t.sidekickopen29.com/e1t/c/5/f18dQhb0S7lC8dDMPbW2n0x6l2B9nMJN7t5XX4RrRJ0W3LyBlq3M2z18W4XHqpM56dHcqf3wwXv802?t=http%3A%2F%2Fwww.iosco.org%2Fresearch%2Fpdf%2Fswp%2FCyber-Crime-Securities-Markets-and-Systemic-Risk.pdf&si=4818764826673152&pi=562f7101-8870-48b5-a6f4-957a75d51f5a>, Staff Working Paper, July 2013. -- *_________________________________________* *sender : Maan Barazy* *Economist - Visionary entrepreneur- Publisher : CapitalIzssues Lebanon English Financial weekly - Managing partner DataInvestConsultLebanon and co founder CEO Sandooq crowdfunding solutions - MA PHILOSOPHY - ISLAMICSTUDIES- **MA Islamic Comparative Jurisprudence - **BS International Economics * *check our websites: * *http:// arabiasocialratings.com <http://arabiasocialratings.com> - http://smementors.net <http://smementors.net> - http:// thebeplan.net <http://thebeplan.net> = **http:// **smeadvisorlb.com- **http:// **datainvestconsult.com <http://datainvestconsult.com>; **smelebanon.net-eBusinessLebanon.NET <http://smelebanon.net-EBUSINESSLEBANON.NET>** - islamicmarkets.net <http://islamicmarkets.net>; **http:// **lebanondatamonitor.com <http://lebanondatamonitor.com> - **LEBANONSTARTUPS.NET <http://LEBANONSTARTUPS.NET> - SMEFORUMLB.COM <http://SMEFORUMLB.COM> - * *http:// **SMELEBANON.NET- <http://t.sidekickopen29.com/e1t/c/5/f18dQhb0S7lC8dDMPbW2n0x6l2B9nMJN7t5XX4RrRJ0W3LyBlq3M2z18W4XHqpM56dHcqf3wwXv802?t=http%3A%2F%2Fsmelebanon.net-smetwits.me%2F&si=4818764826673152&pi=562f7101-8870-48b5-a6f4-957a75d51f5a>* *http:// **SMETWITS.ME <http://SMELEBANON.NET-SMETWITS.ME> - **http:// **capitalissuesNEWS.com <http://capitalissuesonline.com> - datainvestconferences.com <http://datainvestconferences.com>* *contactus; email : **[email protected] <[email protected]>* · *Twitter : **twitter.com/maanbarazy <http://twitter.com/maanbarazy>* · *Linkedin**: **http://www.linkedin.com/in/maanbarazy* <http://www.linkedin.com/in/maanbarazy> · *Facebook**: facebook.com/maanbarazy <http://facebook.com/maanbarazy>* · *Accademia.edu : **http://independent.academia.edu/maanbarazy <http://independent.academia.edu/maanbarazy>* · *Slideshare: **http://www.slideshare.net/maanbarazy* <http://www.slideshare.net/maanbarazy> -- -- You received this message because you are subscribed to the Google Groups "Kantakji Group" group. To post to this group, send email to [email protected] To unsubscribe from this group لفك الاشتراك من المجموعة أرسل للعنوان التالي رسالة فارغة, send email to [email protected] For more options, visit this group at http://groups.google.com/group/kantakjigroup?hl=en سياسة النشر في المجموعة: ترك ما عارض أهل السنة والجماعة... الاكتفاء بأمور ذات علاقة بالاقتصاد الإسلامي وعلومه ولو بالشيء البسيط، ويستثنى من هذا مايتعلق بالشأن العام على مستوى الأمة... عدم ذكر ما يتعلق بشخص طبيعي أو اعتباري بعينه باستثناء الأمر العام الذي يهم عامة المسلمين... تمرير بعض الأشياء الخفيفة المسلية ضمن قواعد الأدب وخاصة منها التي تأتي من أعضاء لا يشاركون عادة، والقصد من ذلك تشجيعهم على التفاعل الإيجابي... ترك المديح الشخصي...إن كل المقالات والآراء المنشورة تُعبر عن رأي أصحابها، ولا تعبّر عن رأي إدارة المجموعة بالضرورة. --- You received this message because you are subscribed to the Google Groups "Kantakji Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/kantakjigroup. For more options, visit https://groups.google.com/d/optout.
