Cyber-attacks significant threat but RBNZ says no need for prescriptive requirements

Reserve Bank head of prudential supervision Toby Fiennes says "the nature and incidence of cyber risk is unique"

Cyber-attack poses a significant threat to the global financial system but the Reserve Bank has decided not to introduce more prescriptive requirements at this stage due to the swiftly changing nature of both the threats and the technology, said Reserve Bank head of prudential supervision Toby Fiennes.

"The nature and incidence of cyber risk is unique, meaning that typical approaches to risk management and disaster recovery planning may not be appropriate. While cyber vulnerabilities can be mitigated, the potential sources of cyber threats and the attack footprint are just too broad, so they can never be eliminated," Fiennes said in a speech published on the central bank's website.

"The dynamic cyber environment means that organisations have to be nimble in their approach to cyber security - focused on outcomes, rather than prescriptive compliance exercises," he said.

Fiennes said the central bank did not believe prescriptive regulations would appreciably improve the outcome, when the technology and threat landscape are both changing so rapidly. "We will, however, review this policy stance from time-to-time to ensure that it remains appropriate," he added.

Fiennes said the central bank is focused on mitigating the systemic risks associated with a possible cyber-attack. These include a cyber-attack on one or more banks, non-bank deposit takers, financial market infrastructures (FMI) or insurers that would lead to a broad loss of confidence in the financial sector; an attack on more or more firms or FMIs that disrupts critical banking and financial services and economic functions; or an attack that would lead to the outright failure of a large, systemically important financial firm or FMI.

He also said the Reserve Bank is closely watching the "emerging wave of 'digital disruption' affecting the banking sector related to fintech, including peer-to-peer lending services, electronic wallets, crypto currencies and so-called "open-banking," among others.

In the short-term digital disruption may result in new risks and increased instability in the financial system but in the long term, it may improve its efficiency, said Fiennes. "Looking forward, the Reserve Bank and other regulators will need to make sure the regulatory regime in New Zealand is adaptive should any new business models become systemic, while not unduly harming innovation," he said.

He said the central bank is working closely with other agencies, such as the FMA and Ministry of Business, Innovation and Employment, to ensure that New Zealand presents an environment where digital financial innovation can flourish, provided it is done safely.

(BusinessDesk)


Got a question about this story? Leave it in Comments & Questions below.

This article is tagged with the following keywords. Find out more about MyNBR Tags

Comments & Questions

Commenter icon key: Subscriber Verified

Post New comment or question

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

NZ Market Snapshot

Forex

Sym Price Change
USD 0.6820 0.0027 0.40%
AUD 0.9018 0.0009 0.10%
EUR 0.5809 0.0009 0.16%
GBP 0.5158 0.0004 0.08%
HKD 5.3266 0.0202 0.38%
JPY 76.4240 0.3340 0.44%

Commods

Commodity Price Change Time
Gold Index 1296.5 15.490 2017-11-17T00:
Oil Brent 62.7 1.370 2017-11-17T00:
Oil Nymex 56.6 1.440 2017-11-17T00:
Silver Index 17.4 0.300 2017-11-17T00:

Indices

Symbol Open High Last %
NASDAQ 6794.7 6797.8 6793.3 -0.15%
DJI 23433.8 23433.8 23458.4 -0.43%