FCA Update On COVID–19 and Information Security Compliance

or to bookmark this page

Click here to bookmark this page

Click here to remove bookmark

FCA Update On COVID–19 and Information Security

FCA Update On COVID-19 and Information Security

On May 6, 2020, the Financial Conduct Authority (FCA) updated its COVID-19 information with its expectations around information security. Read the latest guidance here.

The FCA notes that cyber criminals are exploiting coronavirus related themes during the pandemic to carry out scams. Cyber incidents can cause operational disruptions causing harm to consumers and the integrity of UK markets, as well as threaten firms’ viability and cause instability in the financial system.

Firms have had to adapt to the exceptional circumstances caused by the pandemic. The large number of employees working from home has resulted in online systems becoming increasingly mission critical and consequently exploited by cyber criminals.

The FCA expects firms to prioritize information security and ensure that controls are in place to manage cyber risks and respond to incidents promptly. Firms should:

  • Enhance monitoring to protect end points, information and critical processes (including network connections and video conferencing software)
  • Be vigilant to the potential increase in security breaches or cyber attacks
  • Ensure that they have appropriate governance and oversight arrangements
  • Review the impact of COVID-19 on their information systems security defences
  • Ensure that the general notification requirements are followed, and significant operational/cyber incidents are reported.
FCA Update On COVID–19 and Information Security 2020-05-22T00:00:00.0000000 /insights/publications/compliance-and-regulatory-consulting/fca-update-covid-19-information-security /-/media/kroll/images/news/featured-images/2019/cyber-threat-pharma-companies.jpg publication {DA6CC51B-740E-439A-B283-2BBFB5326BAA} {DE05ECA4-1852-4BEF-A4E1-491CB497F9CB} {1C3CB363-1B9A-40E2-AF19-5C433260F861} {C3F95B9F-FFAF-40F0-9562-1AE28AD27212}

Other Areas We Can Help

By Jurisdiction

Regionally targeted assistance for asset managers in compliance program development, implementation and maintenance

By Jurisdiction

EU Regulation

Comprehensive compliance and regulatory support for EU firms.

EU Regulation

Kroll Cyber Risk

Kroll's award-winning cyber experts can help clients in every step of the way toward cyber resilience.

Kroll Cyber Risk

Insights

Compliance

Deadline for Reporting of Directory Persons is Approaching

Compliance
Compliance

Jersey’s National Risk Assessment – So What?

Compliance
Valuation

Measuring Their Shot – A Study of Professional Golfers’ Future Career Value

Valuation