ECB publishes FMI cyber resilience expectations
On 3 december 2018, The ECB published the Cyber Resilience Oversight Expectations (CROE) for Financial Market Infrastructures (FMIs) following the public consultation launched from April to June 2018.
The CROE aims at providing FMIs with detailed steps on how to operationalize the Guidance on cyber resilience for FMIs published by CPMI-IOSCO in June 2016, at providing the basis for a discussion between FMIs and their overseers, and it incorporates the comments received during the consultation.
Besides, the CROE presents five primary risk managements categories and components that should be addressed through an FMIs’ cyber resilience framework. These categories are:
- governance;
- identification;
- protection;
- detection;
- response & recovery.