Aggregated News From Investment Management Regulators

CMF publishes for consultation regulation on operational risk management and cybersecurity for insurance companies

Report/Flag

Please complete the required fields.



The Financial Market Commission (CMF) has published for consultation a regulation providing instructions on operational risk management and cybersecurity, as well as periodic self-assessments in both areas for insurance and reinsurance companies. The consultation process will be open until January 26, 2021.

Said regulation intends to strengthen the supervision currently carried out by the CMF in this area. It establishes a framework for the evaluation of risk management associated with operational risk and cybersecurity. The proposal considers the experience of other jurisdictions that serve as a reference for Chile, as well as international recommendations regarding operational risk management systems.

The main elements addressed by the regulation in consultation are the following:

  • Principles of an adequate operational risk management and cyber security system, which will serve as a basis for the Commission’s evaluation of companies in this matter. This is done in the context of assessing the companies’ solvency level pursuant to General Rule No. 325.
  • An annual self-assessment on cybersecurity and a biannual self-assessment on operational risk regarding the compliance level of these principles. It must include action plans implemented by insurers and reinsurers to close any detected gaps.
  • Mandatory reporting to the CMF of any cybersecurity-related incidents faced by insurance companies. This includes defining procedures for entities to share this information with the rest of the industry to protect both the system and its users.

Interested parties can access the Draft Rules and Norms section of the CMF website to check the details of the regulatory proposal and submit their feedback.

This news item was originally published by the Commission for the Financial Market (CMF CL). For more information, please see the Source Link.

Regulator Information

Recent Articles

The SEC Levels Up: Statement on In re Activision Blizzard

Feb. 3, 2023 Today, the Commission announced a $35 million settlement with Activision Blizzard Inc. (“Activision Blizzard”).

Mr William Stephen Cairns (date of Birth 15 January 1949) of Key West, Doyle Road, St Peter Port Guernsey GY1 1RG — GFSC

Date of prohibition order pursuant to section 33 of the Financial Services Business (Enforcement Powers) (Bailiwick of Guernsey) Law, 2020 and prohibited functions: From 2 February 2023 until 2 July

Mr Du Preez Gert Vermeulen (Date of Birth 5 August 1987) of Doyle Court, Doyle Road, St Peter Port Guernsey GY1 1RD

Date of prohibition order pursuant to section 33 of the Financial Services Business (Enforcement Powers) (Bailiwick of Guernsey) Law, 2020 and prohibited functions: From 2 February 2023 until 2 Mar

Publication of a Notice of the fact of a Prohibition Order and a Discretionary Financial Penalty — GFSC

On 2 February 2023, the Commission imposed discretionary financial penalties as follows:  Mr William Stephen Cairns (“Mr Cairns”) a financial penalty of £133,000; and  Mr Du Preez Gert Vermeulen (“M

Get the latest from Regulatory.News in your inbox!

×