Stand the resilience test – OSFI adds to the operational resilience conversation
In line with measures other regulators have taken, OSFI released its final Guideline E-21 on operational risk and resilience, which outlines expectations for firms to prepare for and respond to disruptive events that could affect business operations.
New SEC Rule 10 to lift the lid on cybersecurity risk
The U.S. SEC has published proposals for new Rule 10, which would introduce cybersecurity requirements for all "covered entities" including new immediate reporting requirements in the event of significant cybersecurity incidents.
U.S. National Cybersecurity Strategy reignites conversation around liability for failure
The White House has published its long-awaited National Cybersecurity Strategy, which creates five key collaborative pillars for effective cybersecurity in the U.S.
ECB announces stress test on cyber resilience
The European Central Bank has expressed concern about outsourcing risks, and launched a thematic stress test on cyber resilience.