Albert Yuen and Jasmine Yung at Linklaters discuss Hong Kong's regulatory approach to technology risk and data security.
January 9, 2023Attacks have proliferated due to the increased use of technology, continued adoption of cryptocurrencies, and the emergence of Ransomware-as-a-Service models.
December 23, 2022The guidance focuses on risk assessment, anti-DDoS control architecture, third party governance, and incident response and escalation.
November 29, 2022Regulated entities will have to obtain source code from vendors for critical applications or ensure a software escrow agreement is in place.
October 24, 2022An advisory calls on crypto firms to strengthen their security controls, and implement staff and user training programmes.
October 20, 2022Central banks are prioritising investment in technical security control and resiliency, embracing risk management concepts, and adopting 'zero-trust' models.
September 16, 2022Companies should review their cyber resilience settings and ensure detection, mitigation and response measures are adequate, says Greg Yanco.
June 16, 2022The guidance sets out expectations on the governance processes, design principles, and operational controls FIs should consider when adopting cloud services.
June 5, 2022New practice note offers guidance on governance, outsourcing, internal controls, technology risk, and business conduct, among other areas.
March 28, 2022Boards, auditors, and regulators will demand that firms level up their incident response playbooks, tools, and platforms.
March 16, 2022