CFTC commissioner sees a need for the industry to shift "from incident response to cyber resilience". New rule will be proposed in the next few months.
June 24, 2023The draft guidelines are intended to help non-bank payment system operators mitigate emerging cyber security risks.
June 6, 2023US Treasury and MAS tested information exchange protocols and incident response coordination for cyber incidents involving banks operating in both jurisdictions.
May 3, 2023The proposals will enhance cyber and technology risk management requirements for key entities that underpin the US securities market.
March 17, 2023The advisory calls on firms to take into account concentration risk when outsourcing multiple critical services to the same third party vendor.
February 28, 2023Treasury's report highlights concerns over market concentration in cloud service offerings, among other challenges that could detract from their benefits.
February 10, 2023Albert Yuen and Jasmine Yung at Linklaters discuss Hong Kong's regulatory approach to technology risk and data security.
January 9, 2023Attacks have proliferated due to the increased use of technology, continued adoption of cryptocurrencies, and the emergence of Ransomware-as-a-Service models.
December 23, 2022The guidance focuses on risk assessment, anti-DDoS control architecture, third party governance, and incident response and escalation.
November 29, 2022Regulated entities will have to obtain source code from vendors for critical applications or ensure a software escrow agreement is in place.
October 24, 2022