Aggregated News From Investment Management Regulators

EBA Guidelines on ICT and Security Risk Management


Please complete the required fields.

On 28 November 2019, the European Banking Authority (EBA) published final Guidelines on ICT and security risk management for credit institutions, investment firms and payment service providers (PSPs) (‘the Guidelines’). The FCA has notified the EBA that it intends to comply with these Guidelines.

All credit institutions, investment firms and PSPs will be expected to make every effort to comply with the Guidelines from 30 June 2020 when they enter into force. Firms should also refer to the EBA’s further guidance on the use of flexibility in relation to Covid-19 and the implementation of the Guidelines.

Consistent with this further guidance, the FCA will apply reasonable supervisory flexibility when assessing the implementation of the Guidelines given the ongoing Covid-19 crisis. In line with previous FCA guidance to firms in the current situation, we encourage firms to particularly focus on the provisions within the Guidelines relating to information security, ICT operations and business continuity to maximise their ability to provide services on an ongoing basis and to limit losses in the event of severe business disruption.

The FCA is currently consulting on new requirements for operational resilience and we expect to publish our final rules in Q1 2021, including providing further information on the links between our operational resilience policy and the EBA Guidelines. We welcome feedback from firms to our consultation and their experiences in embedding the requirements of the Guidelines.

Regulator Information

Regulator Name: Financial Conduct Authority
Abbreviation: FCA
Jurisdiction: United Kingdom

Recent Articles

FCA publishes Decision Notices against three bond traders for market manipulation

The FCA has published Decision Notices given to Diego Urra, Jorge Lopez Gonzalez and Poojan Sheth, three bond traders, for market abuse. The FCA has...

Guidelines On policies and procedures in relation to compliance management

You have the option below to allow a unique web analytics cookie to be stored on your browser, enabling the operator of the website to collect and analyse various types of statistical data.

Release Order – IFL Promoters Ltd., Anjana Gupta and Kishan Gupta in the matter of IFL Promoters Ltd. : Certificate No. 5003 of 2022.

This news item was originally published by the Securities and Exchange Board of India (SEBI IN). See the article here: Read more

Get the latest from Regulatory.News in your inbox!