TARGET GROUP | Financial sector supervisors and regulators with responsibilities that include cyber risk regulation and / or supervision at central banks and agencies charged with supervising financial institutions.
QUALIFICATIONS | Participants are expected to have at least one-year of experience in general regulation and supervision of financial institutions.
COURSE DESCRIPTION | This course, presented by the Monetary and Capital Markets Department, provides an introductory to intermediate level of training on cyber risk regulation and supervision to non-specialist financial sector supervisors. The course: (i) reviews recent trends in the technology adopted by supervised entities, the evolving threat landscape and their implications for cyber risk and financial stability; (ii) outlines the key elements of cyber risk regulations; (iii) discusses supervisory approaches and tools; and (iv) presents key cybersecurity concepts, covering governance, risk assessment, and information sharing, based on international standards and best practices. Sessions will focus on providing practical lessons and tips that can be used by regulators and supervisors, as part of their daily supervisory activities. The sessions will be instructional, as well as interactive, through group exercises, case studies, role plays, and information sharing discussions.
COURSE OBJECTIVES | Upon completion of this course, participants should be able to:
• Understand the basics of information technology solutions used in financial institutions, the cyber threat landscape, key characteristics of cyber risk and its place in the enterprise-wide risk management framework.
• Define and summarize the key components of cyber risk regulation and sound approaches to supervising cyber risk.
• Understand the financial stability implications of cyber risk and have an insight on ways to enhance the cyber resilience of the financial sector.