A new framework for sharing threat intelligence and testing cyber security defences has been developed for the UK's financial services sector.
CREST, the not-for-profit organisation that represents the technical information security industry, has been working with the Bank of England, the Treasury and the Financial Conduct Authority to develop the system called CBEST.
CBEST has been mooted as the first initiative of its type to be led by any of the world’s central banks. In a speech today to the British Bankers Association, Andrew Gracie, executive director resolution at the Bank of England, stressed the importance of CBEST to help FS firms protect against increasingly sophisticated cyber attacks on their core systems.
CBEST will identify areas of vulnerability and benchmark how effective companies’ detection and recovery processes are. FS organisations will also have access to advanced and detailed cyber threat intelligence, as well as cyber defence analysts.
The system is designed to help the boards of financial firms, infrastructure providers and regulators improve their understanding of the types of cyber attack that could undermine financial stability in the UK.
Ian Glover, president of CREST, said: “Although existing penetration testing services in the financial services sector have provided a good level of assurance against traditional attacks, they do not address more sophisticated cyber attacks on critical assets.
“CBEST tests have been designed to replicate the behaviours of serious threat actors, assessed by government and commercial intelligence providers as posing a genuine threat to important financial institutions.”
Latest News
-
Gemini to cut quarter of workforce and exit UK, EU and Australia as crypto slump forces retrenchment
-
Bank ABC’s mobile-only ila bank migrates to core banking platform
-
Visa launches platform to accelerate small business growth in US
-
NatWest to expand Accelerator programme to 50,000 members in 2026
-
BBVA joins European stablecoin coalition
-
eToro partners with Amundi to launch equity portfolio with exposure to ‘megatrends’
Creating value together: Strategic partnerships in the age of GCCs
As Global Capability Centres reshape the financial services landscape, one question stands out: how do leading banks balance in-house innovation with strategic partnerships to drive real transformation?
Data trust in the AI era: Building customer confidence through responsible banking
In the second episode of FStech’s three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech examines the critical relationship between data trust, transparency, and responsible AI implementation in financial services.
Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.
Beyond compliance: Building unshakeable operational resilience in financial services
In today's rapidly evolving financial landscape, operational resilience has become a critical focus for institutions worldwide. As regulatory requirements grow more complex and cyber threats, particularly ransomware, become increasingly sophisticated, financial services providers must adapt and strengthen their defences. The intersection of compliance, technology, and security presents both challenges and opportunities.
© 2019 Perspective Publishing Privacy & Cookies
Recent Stories