FSOR. Cyber security in the financial sector VISION 2020 FINANCIAL SECTOR FORUM FOR OPERATIONAL RESILIENCE

Similar documents
Brussels, 19 May 2011 COUNCIL THE EUROPEAN UNION 10299/11 TELECOM 71 DATAPROTECT 55 JAI 332 PROCIV 66. NOTE From : COREPER

Netherlands Cyber Security Strategy. Michel van Leeuwen Head of Cyber Security Policy Ministry of Security and Justice

Resolution adopted by the General Assembly on 21 December [on the report of the Second Committee (A/64/422/Add.3)]

Electronic payments in the Netherlands

NATIONAL CYBER SECURITY STRATEGY. - Version 2.0 -

RESOLUTION 130 (Rev. Antalya, 2006)

Promoting Global Cybersecurity

COMMISSION RECOMMENDATION. of on Coordinated Response to Large Scale Cybersecurity Incidents and Crises

COUNCIL OF THE EUROPEAN UNION. Brussels, 24 May /13. Interinstitutional File: 2013/0027 (COD)

Bradford J. Willke. 19 September 2007

The UK s National Cyber Security Strategy

RESOLUTION 130 (REV. BUSAN, 2014)

Cybersecurity Strategy of the Republic of Cyprus

The commission communication "towards a general policy on the fight against cyber crime"

Cyber Security and Cyber Fraud

Danish Cyber and Information Security Strategy. Ministry of Finance

Cybersecurity, safety and resilience - Airline perspective

SEACEN Cyber Security Summit 2014 Demystifying Cyber Risks: Evolving Regulatory Expectations

COMMENTARY. Federal Banking Agencies Propose Enhanced Cyber Risk Management Standards

Critical Infrastructure Analysis and Protection - A Case for Secure Information Exchange. August 16, 2016

COMESA CYBER SECURITY PROGRAM KHARTOUM, SUDAN

Key Findings from the Global State of Information Security Survey 2017 Indonesian Insights

December 10, Statement of the Securities Industry and Financial Markets Association. Senate Committee on Banking, Housing, and Urban Development

RESOLUTION 45 (Rev. Hyderabad, 2010)

10025/16 MP/mj 1 DG D 2B

Cybersecurity, Trade, and Economic Development

Mozilla position paper on the legislative proposal for an EU Cybersecurity Act

ENISA s Position on the NIS Directive

13967/16 MK/mj 1 DG D 2B

Discussion on MS contribution to the WP2018

Assessment of the progress made in the implementation of and follow-up to the outcomes of the World Summit on the Information Society

MALAYSIA S APPROACH IN CAPACITY BUILDING. Dr Amirudin Abdul Wahab Chief Executive Officer CyberSecurity Malaysia 24 March 2017

Provisional Translation

Security in India: Enabling a New Connected Era

Itu regional workshop

DIGITAL TRANSFORMATION OF THE RETAIL PAYMENTS ECOSYSTEM

OAS Cybersecurity Capacity Building Efforts

Cybersecurity governance in Europe. Sokratis K. Katsikas Systems Security Laboratory Dept. of Digital Systems University of Piraeus

10007/16 MP/mj 1 DG D 2B

Global Alliance Against Child Sexual Abuse Online 2014 Reporting Form

Chapter X Security Performance Metrics

SWIFT Customer Security Programme

Rohana Palliyaguru Director -Operations Sri Lanka CERT CC APCERT AGM and Conference, 24 th October 2018 Shanghai, China MINISTRY OF TELECOMMUNICATION

Cybersecurity & Digital Privacy in the Energy sector

Information Security and Cyber Security

Cyber Security Issues and Responses. Andrew Rogoyski Head of Cyber Security Services CGI UK

Security and resilience in Information Society: the European approach

The University of Queensland

EUROPEAN COMMISSION JOINT RESEARCH CENTRE. Information Note. JRC activities in the field of. Cybersecurity

The challenges of the NIS directive from the viewpoint of the Vienna Hospital Association

UNCLASSIFIED. National and Cyber Security Branch. Presentation for Gridseccon. Quebec City, October 18-21

Cyber Security Strategy

Cyber Security Strategy

The Republic of Korea. economic and social benefits. However, on account of its open, anonymous and borderless

Security Awareness Training Courses

CRITICAL INFRASTRUCTURE AND CYBER THREAT CRITICAL INFRASTRUCTURE AND CYBER THREAT

NEW INNOVATIONS NEED FOR NEW LAW ENFORCEMENT CAPABILITIES

ENISA EU Threat Landscape

Cybersecurity & Spam after WSIS: How MAAWG can help

Implementation Strategy for Cybersecurity Workshop ITU 2016

2009/7 Assessment of the progress made in the implementation of and follow-up to the outcomes of the World Summit on the Information Society

Caribbean Cyber Security: Not Only Government s Responsibility

EU policy on Network and Information Security & Critical Information Infrastructures Protection

Maintaining Trust: Visa Inc. Payment Security Strategy

Featured Articles II Security Research and Development Research and Development of Advanced Security Technology

New Zealand National Cyber Security Centre Incident Summary

COMMISSION STAFF WORKING DOCUMENT EXECUTIVE SUMMARY OF THE IMPACT ASSESSMENT. Accompanying the document

ISACA National Cyber Security Conference 8 December 2017, National Bank of Romania

Strategy for information security in Sweden

Critical Infrastructure Protection (CIP) as example of a multi-stakeholder approach.

Commonwealth Cyber Declaration

RFD. for ICERT ( ) RESULTS-FRAMEWORK DOCUMENT. Department of Information Technology. Results-Framework Document (RFD) for CERT-In ( )

Special Action Plan on Countermeasures to Cyber-terrorism of Critical Infrastructure (Provisional Translation)

Ms. Izumi Nakamitsu High Representative for Disarmament Affairs United Nations

How to implement NIST Cybersecurity Framework using ISO WHITE PAPER. Copyright 2017 Advisera Expert Solutions Ltd. All rights reserved.

Package of initiatives on Cybersecurity

International cyber strategy for Norway

CYBER INCIDENT REPORTING GUIDANCE. Industry Reporting Arrangements for Incident Response

Secure Societies Work Programme Call

Cyber Management for Ports Results of Small Port Cyber Security Workshops

Professional Training Course - Cybercrime Investigation Body of Knowledge -

FOREWORD DR PHILIP SMITH MBE CHAIRMAN MILTON KEYNES BUSINESS LEADERS PARTNERSHIP

G7 Bar Associations and Councils

Chapter X Security Performance Metrics

Information sharing in the EU policy on NIS & CIIP. Andrea Servida European Commission DG INFSO-A3

WORKSHOP CYBER SECURITY AND CYBERCRIME POLICIES FOR AFRICAN DIPLOMATS. Okechukwu Emmanuel Ibe

15412/16 RR/dk 1 DGD 1C

Cyber Security. February 13, 2018 (webinar) February 15, 2018 (in-person)

Personal Cybersecurity

Cybersecurity and Privacy Innovation Forum Brussels, 28 April Keynote address. Giovanni Buttarelli European Data Protection Supervisor

Cyber Insurance: What is your bank doing to manage risk? presented by

CYBER SOLUTIONS & THREAT INTELLIGENCE

Regulatory Update Cyber Security

NATIONAL DEFENSE INDUSTRIAL ASSOCIATION Homeland Security Symposium

Wiebe Ruttenberg & Emran Islam DG Market Infrastructure & Payments. From Cyber Threats via Cyber Security to Cyber Resilience

A Multi-Stakeholder Approach in the Fight Against Cybercrime

Protecting Your Enterprise Databases from Ransomware

Transport and ICT Global Practice Smart Connections for All Sandra Sargent, Senior Operations Officer, Transport & ICT GP, The World Bank

SAINT PETERSBURG DECLARATION Building Confidence and Security in the Use of ICT to Promote Economic Growth and Prosperity

PONEMON INSTITUTE RESEARCH REPORT 2018 STUDY ON GLOBAL MEGATRENDS IN CYBERSECURITY

Transcription:

FSOR FINANCIAL SECTOR FORUM FOR OPERATIONAL RESILIENCE DECEMBER 2016 Cyber security in the financial sector VISION 2020 The Danish financial sector should be best in class in Europe when it comes to countering the threat from cybercrime, so that it: continues to provide a secure and efficient infrastructure, and supports the Danes continued trust in the digital solutions of the Danish financial sector. We will strengthen collaboration within the sector and ensure improved scope for action for individual sector participants We will strengthen collaboration with relevant stakeholders both nationally and internationally We will increase awareness and knowledge of cyber security

Cyber security in the financial sector All over the world, the IT systems of the financial sector and other critical sectors in society are attacked by criminals and by government-sponsored actors. Denmark is one of the most digitised societies in the world. Combined with the large values handled, this makes the Danish financial sector a target of cybercrime. The Centre for Cyber Security assesses the risk of cybercrime against Danish authorities and private sector firms to be very high. The cyber threat is increasing In 2016, there has been a tendency for IT criminals to target the business sector in Denmark. Most recently, in the PwC Cybercrime Survey 2016 PwC documented that 69 per cent of the respondent firms in Denmark had been hit by cyberattacks within the last financial year. CEO fraud is a new type of attack that is becoming more prevalent. In the first half of the year, Danish banks registered at least 92 successful attacks against Danish firms, resulting in total losses of more than kr. 60 million. In some cases, the amounts involved are very large. In April 2016, the Danish prosecution service referred to two cases in which fraudsters had tricked Danish firms into transferring amounts of kr. 100 and 40 million, respectively. The use of ransomware, which means that IT criminals encrypt their victims computers and then require a ransom for decrypting them, has also increased strongly. A recent analysis by Trend Micro shows that at the international level, the number of ransomware attacks grew by almost 200 per cent in the 1st half of 2016 compared with 2015. Finally, the incidence of phishing and smishing has been rising lately, and consequently the Danish Bankers Association has decided to include this type of crime in its statistics of online bank hackings from 2016 onwards. The methods used by IT criminals are constantly changing and becoming more and more sophisticated. In 2016, IT criminals succeeded in using the SWIFT infrastructure to rob the central bank of Bangladesh of 81 million dollars. The SWIFT system itself was not compromised, but insufficient IT security in the Bangladeshi central bank s system made it possible for IT criminals to gain unauthorised access and use the SWIFT system for their criminal transaction. This gives cause for serious concern and is a topical example of how vulnerable our interconnected systems are. Cyberattacks are a potential threat to financial stability The financial sector depends on complex IT systems in order to function, and at the same time banks and mortgage banks are linked across the sector via data centres and payment and settlement systems. A 2 FSOR - Vision for the cyber security in the financial sector

stable financial system relies, inter alia, on trust that book-entries of transactions are correct and are kept confidential, that settlement of payments and securities trades takes place in a timely manner and that customer-oriented systems are safe and accessible. Although the individual attacks do not as such have any impact on society, repeated cyberattacks on financial sector firms and systems may weaken confidence in the financial system. And an extensive cyberattack that compromises critical systems could potentially affect the whole sector or significant parts of it for a while. Hence, cyberattacks on the financial system are a potential threat to financial stability. The individual financial sector participants have strong focus on IT security, including on making their systems resilient to cyber threats. However, the interconnectedness of the financial sector means that there is a need for a concerted and coordinated effort to counter the rise in cybercrime. Danmarks Nationalbank put this issue on the agenda of the Systemic Risk Council in December 2015, and at followup discussions with the financial sector there was broad agreement that it would be expedient to establish formal sector collaboration in this area. Against that background, the FSOR, Financial Sector forum for Operational Resilience was set up. The FSOR held its first meeting in June 2016. Financial Sector forum for Operational Resilience The FSOR is a forum for collaboration between authorities and key financial sector participants aiming to increase operational resilience when using IT across the sector, including resilience to cyberattacks. The tasks of the FSOR are to: Ensure a common overview of operational risks that may have a cross-sector impact and that could potentially pose a threat to financial stability in Denmark. Decide on and ensure implementation of joint measures to ensure financial sector resilience to major operational incidents, including cyberattacks. Create a framework for collaboration and information-sharing. At present, the FSOR works along four tracks: establishment of national cross-sector crisis response for the financial sector, conducting a Danish cyber stress test, mapping and risk-assessing the financial infrastructure, and general stocktaking of the cyber resilience capability of key participants in relation to cyberattacks. The work of the FSOR addresses operational resilience in general, but with special focus on cyber resilience. The FSOR finds that the above measures are obvious, appropriate and a good start, but also finds that there is a need to formulate a shared vision for the countermeasures to be taken by the financial sector against the increase in cybercrime. This vision should encapsulate and align FSOR initiatives and the resultant measures to be taken by the individual banks and mortgage banks, data centres and payment and settlement systems. 3 FSOR - Vision for the cyber security in the financial sector

Vision for the cyber security of the financial sector The Danish financial sector should be best in class in Europe when it comes to countering the threat from cybercrime, so that it: continues to provide a secure and efficient infrastructure, and supports the Danes continued trust in the digital solutions of the Danish financial sector. It is essential that financial sector customers have trust in the sector and in the digital solutions it uses. This is a precondition for realising the growth and innovation potential that lies in the digitisation of society. Measuring points In order to measure whether the vision is realised, three measuring points will be set up for the vision period, with attached indicators. The measuring points suggested are: 1. Denmark is in the top 5 in international benchmarks for cyber security among financial firms in Europe. 2. Danish citizens and firms continue to have great trust in the sector s digital solutions. 3. The sector s losses as a result of cybercrime are in the bottom 5 in Europe. These indicators are currently being clarified. 4 FSOR - Vision for the cyber security in the financial sector

Areas of action To realise the vision, initiatives must be implemented within three main areas: Strengthened collaboration within the sector and improved scope for action for individual sector participants The FSOR should create the framework for strengthened collaboration within the sector and improve the sector s scope for action in relation to cyber threats and IT security threats. We want to be best in class in Europe when it comes to optimising and testing operational resilience capability across the sector. Stronger sector collaboration should also contribute to improving the individual participants ability to address cyber threats and IT security threats. Stronger collaboration with relevant stakeholders both nationally and internationally The FSOR should strengthen collaboration with relevant stakeholders, both nationally and internationally, with a view to sharing experience and best practice for countering cybercrime. This should improve the scope for specific action for FSOR members and for other stakeholders. Increased awareness and knowledge of cyber security The FSOR should help to ensure that all financial sector participants have the necessary knowledge and skills so that they will be able to protect themselves against cyber threats and IT security threats. At the same time, the FSOR s work should contribute to improving the individual participants efforts to increase customer awareness and competencies as regards cyber security. 5 FSOR - Vision for the cyber security in the financial sector

Initiatives in the coming years Key initiatives in 2016 and the coming years are described below. 2016 In 2016, the primary focus has been on the aim of strengthening collaboration and the scope for action within the sector. Establishment of cross-sector crisis response to manage serious operational incidents, including cyberattacks. Conducting a cyber stress test of the cross-sector crisis response plans. Identification of critical participants and core functionality. Mapping of the infrastructure and interdependencies between the various participants. Stocktaking of key participants cyber resilience to cyberattacks. Investigation by FSOR participants of the possibilities of setting up a Nordic financial CSIRT. 2017-20 Identification and assessment of operational risks that may have a cross-sector impact and could potentially pose a threat to financial stability. Preparation of a plan of action based on, inter alia, FSOR activities from 2016, including: Initiatives resulting from the risk assessment. Initiatives resulting from the stocktaking. Initiatives to follow up the cyber stress test. Regular testing of the cross-sector crisis response plans with a view to improving/further developing these plans. Incorporation of relevant IOSCO recommendations on cyber security in the administration of the Danish payment and settlement systems. Strengthened collaboration and scope for action within the sector Ensuring coordination between the FSOR s work and a forthcoming updated national cyber security strategy. Setting up collaboration with relevant FSOR counterparts in other countries. Setting up collaboration with a future Nordic financial CSIRT. Investigating the possibilities of intensifying collaboration with Nordic financial supervisory authorities, central banks and authorities responsible for cyber security. Stronger collaboration with other stakeholders 6 FSOR - Vision for the cyber security in the financial sector

Identifying international best practice for cyber security. Creating a framework for inviting international expertise to Denmark. Sharing knowledge about measures taken in various parts of the sector in relation to citizens and firms knowledge of IT security and ability to protect themselves better against cybercrime. Increased awareness and knowledge of cyber security FSOR participants Banks and mortgage banks Danske Bank, DLR Kredit, Jyske Bank, Nordea, Nykredit, Sydbank Payment and settlement systems Nets, VP Securities Data centres Bankdata, BEC, JN Data, SDC Industry associations Danish Bankers Association, Danish Insurance Association, Association of Danish Mortgage Banks Authorities Centre for Cyber Security, Ministry of Business, Danish Financial Supervisory Authority, Danmarks Nationalbank Others e-nettet, the Financial Stability Company, Nasdaq Danmarks Nationalbank chairs and acts as secretariat of the FSOR. 7 FSOR - Vision for the cyber security in the financial sector

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback