25 September 2017
Find out more

UK clearing houses to be subject to formal cybersecurity reporting

25 August 2017  |  13442 views  |  0 Bank of england

Clearing houses in the UK will have to complete regular cybersecurity reports due to new legislation likely to be introduced in May 2018.

The legal update will put the UK's regulation of cyber security in financial market infrastructures much more in line with current EU directives around critical infrastructure, including the Network and Information Security (NIS) Directive.

The EU's Directive allows each member state to define what is classed as an 'essential service' and therefore covered by the legislation. 

Earlier this month the UK government stated that firms operating in banking and financial market infrastructure would be exempted from the 'essential service' operators, despite the Directive stating that such firms fall within its scope. 

The latest report, published by legal online news site Out-law.com, suggests that the UK plans to codify cybersecurity reporting for clearing houses in separate legislation to the UK's proposed new NIS laws.

The government said that "provisions at least equivalent to those specified in the Directive will already exist by the time the Directive comes into force" in the context of cybersecurity obligations and notification duties in the banking and financial market infrastructure sectors.

It said that firms in those sectors "must continue to adhere to requirements and standards as set by the Bank of England and/or the Financial Conduct Authority".

The Bank of England has taken a number of steps to underline the significance of cybersecurity for market participants and infrastructure operators, including payment networks, central securities depositories and clearing houses. Its last annual report  described cybersecurity as "a supervisory priority".

And the Bank's Financial Stability Report, issued in June, detailed its vulnerability testing of the market's infrastructure operators and participants, including ther identification of certain weaknesses in terms of cyber risks and the need to step up its cybersecurity efforts.

"In some cases, controls on the integrity of systems and confidentiality of data needed to be strengthened," the Bank said. "In others, the tests identified the need for further investment in capabilities to detect, mitigate and respond to attacks. And in general, the tests highlighted the importance of firms continuing to invest in their people, processes and technology in order to counter the risks of cyber attack."

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

SEC told to improve cyber attack defences

SEC told to improve cyber attack defences

28 July 2017  |  13552 views  |  0 comments | 10 tweets | 12 linkedin
Hong Kong to tighten cyber-security rules in wake of multiple stock hacks

Hong Kong to tighten cyber-security rules in wake of multiple stock hacks

10 May 2017  |  9139 views  |  0 comments | 14 tweets | 11 linkedin
Bank of England officials watch as cyber attack unfolds

Bank of England officials watch as cyber attack unfolds

03 November 2016  |  11142 views  |  1 comments | 15 tweets | 15 linkedin
New EU rules could cost UK firms £122bn in cybersecurity fines - PCI SSC

New EU rules could cost UK firms £122bn in cybersecurity fines - PCI SSC

17 October 2016  |  21312 views  |  4 comments | 32 tweets | 40 linkedin
Cyber risks pose the single biggest threat to modern financial markets - CFTC

Cyber risks pose the single biggest threat to modern financial markets - CFTC

04 December 2015  |  10432 views  |  0 comments | 24 tweets | 31 linkedin
UK banks covering up cybercrime losses - City of London Police

UK banks covering up cybercrime losses - City of London Police

14 April 2015  |  11748 views  |  14 comments | 27 tweets | 15 linkedin
Bank chiefs frightened by cyber risks - PwC

Bank chiefs frightened by cyber risks - PwC

17 February 2015  |  10351 views  |  2 comments | 11 tweets | 18 linkedin
BofE unveils cyber-security framework

BofE unveils cyber-security framework

10 June 2014  |  8096 views  |  0 comments | 6 tweets | 7 linkedin
Britain's banks told to draw up cyber-attack plans

Britain's banks told to draw up cyber-attack plans

02 October 2013  |  9940 views  |  0 comments | 11 tweets | 9 linkedin
LCH.Clearnet hit by major New Year's Eve IT failure

LCH.Clearnet hit by major New Year's Eve IT failure

26 March 2013  |  6734 views  |  0 comments | 1 tweets

Related company news

 

Related blogs

Create a blog about this story (membership required)
download the paper nowvisit www.sibos.comvisit www.capgemini.com

Top topics

Most viewed Most shared
HSBC switches on selfie payments in ChinaHSBC switches on selfie payments in China
13767 views comments | 29 tweets | 44 linkedin
AXA launches blockchain to cover late flight compensationAXA launches blockchain to cover late flig...
10553 views comments | 14 tweets | 30 linkedin
SBI Ripple Asia advances on South KoreaSBI Ripple Asia advances on South Korea
8741 views comments | 16 tweets | 1 linkedin
Apple P2P payments service nears launchApple P2P payments service nears launch
8705 views comments | 19 tweets | 27 linkedin
ISO 20022: The common language of choiceISO 20022: The common language of choice
8460 views comments | 1 tweets | 2 linkedin

Featured job

Competitive base, commission, benefits
London, UK

Find your next job