FCA Update On COVID–19 and Information Security

FCA Update On COVID-19 and Information Security

On May 6, 2020, the Financial Conduct Authority (FCA) updated its COVID-19 information with its expectations around information security. Read the latest guidance here.

The FCA notes that cyber criminals are exploiting coronavirus related themes during the pandemic to carry out scams. Cyber incidents can cause operational disruptions causing harm to consumers and the integrity of UK markets, as well as threaten firms’ viability and cause instability in the financial system.

Firms have had to adapt to the exceptional circumstances caused by the pandemic. The large number of employees working from home has resulted in online systems becoming increasingly mission critical and consequently exploited by cyber criminals.

The FCA expects firms to prioritize information security and ensure that controls are in place to manage cyber risks and respond to incidents promptly. Firms should:

  • Enhance monitoring to protect end points, information and critical processes (including network connections and video conferencing software)
  • Be vigilant to the potential increase in security breaches or cyber attacks
  • Ensure that they have appropriate governance and oversight arrangements
  • Review the impact of COVID-19 on their information systems security defences
  • Ensure that the general notification requirements are followed, and significant operational/cyber incidents are reported.
FCA Update On COVID–19 and Information Security 2020-05-22T00:00:00.0000000 /insights/publications/compliance-and-regulatory-consulting/fca-update-covid-19-information-security /-/media/kroll/images/news/featured-images/2019/cyber-threat-pharma-companies.jpg publication {DA6CC51B-740E-439A-B283-2BBFB5326BAA} {DE05ECA4-1852-4BEF-A4E1-491CB497F9CB} {1C3CB363-1B9A-40E2-AF19-5C433260F861} {C3F95B9F-FFAF-40F0-9562-1AE28AD27212}

Related Services

Duff & Phelps Compliance and Regulatory Consulting

By Jurisdiction

Regionally targeted assistance for asset managers in compliance program development, implementation and maintenance

By Jurisdiction
Duff & Phelps Compliance and Regulatory Consulting

EU Regulation

Comprehensive compliance and regulatory support for EU firms.

EU Regulation
Cyber Risk

Kroll Cyber Risk

Kroll's award-winning cyber experts can help clients in every step of the way toward cyber resilience.

Kroll Cyber Risk

Insights

Compliance

Short Selling Restrictions

Compliance
Compliance

Forbearance – What Does the “New Normal” Look Like for Consumer Credit Firms?

Compliance
Compliance

Current Environment Highlights the Value of a Targeted Mock Regulatory Examination

Compliance
Article

Firms Need to Register for FCA’s New Data Collection Platform

Article