FCA Update On COVID–19 and Information Security

FCA Update On COVID-19 and Information Security

On May 6, 2020, the Financial Conduct Authority (FCA) updated its COVID-19 information with its expectations around information security. Read the latest guidance here.

The FCA notes that cyber criminals are exploiting coronavirus related themes during the pandemic to carry out scams. Cyber incidents can cause operational disruptions causing harm to consumers and the integrity of UK markets, as well as threaten firms’ viability and cause instability in the financial system.

Firms have had to adapt to the exceptional circumstances caused by the pandemic. The large number of employees working from home has resulted in online systems becoming increasingly mission critical and consequently exploited by cyber criminals.

The FCA expects firms to prioritize information security and ensure that controls are in place to manage cyber risks and respond to incidents promptly. Firms should:

  • Enhance monitoring to protect end points, information and critical processes (including network connections and video conferencing software)
  • Be vigilant to the potential increase in security breaches or cyber attacks
  • Ensure that they have appropriate governance and oversight arrangements
  • Review the impact of COVID-19 on their information systems security defences
  • Ensure that the general notification requirements are followed, and significant operational/cyber incidents are reported.
FCA Update On COVID–19 and Information Security 2020-05-22T00:00:00.0000000 /insights/publications/compliance-and-regulatory-consulting/fca-update-covid-19-information-security /-/media/kroll/images/news/featured-images/2019/cyber-threat-pharma-companies.jpg publication {DA6CC51B-740E-439A-B283-2BBFB5326BAA} {DE05ECA4-1852-4BEF-A4E1-491CB497F9CB} {1C3CB363-1B9A-40E2-AF19-5C433260F861} {C3F95B9F-FFAF-40F0-9562-1AE28AD27212}

Related Services

By Jurisdiction

Regionally targeted assistance for asset managers in compliance program development, implementation and maintenance

By Jurisdiction

EU Regulation

Comprehensive compliance and regulatory support for EU firms.

EU Regulation

Kroll Cyber Risk

Kroll's award-winning cyber experts can help clients in every step of the way toward cyber resilience.

Kroll Cyber Risk

Insights

Compliance

Update on Short Selling Restrictions

Compliance
Compliance

The Face of Regulation in the New Normal

Compliance
Compliance

Extension of the Senior Managers and Certification Regime (SM&CR) Implementation Periods for Solo-Regulated Firms

Compliance
Compliance

FCA Issues its Discussion Paper on the New Prudential Regime

Compliance