ECB to stress test 109 banks on ability to recover from cyber-attack

The European Central Bank (ECB) has announced plans to carry out a cyber resilience stress test on 109 directly supervised banks in 2024.

In the stress test scenario, firms will be hit by a successful cyber-attack that disrupts their daily operations.

The exercise will assess how banks respond to and recover from a cyber-attack, rather than their ability to prevent it.

Under the stress test, banks will be expected to test a number of measures, including activating emergency procedures and contingency plans and restoring normal operations.

Supervisors from the ECB will subsequently assess the extent to which banks can cope under such a scenario.

The central bank said that as part of the exercise, 28 banks will undergo an enhanced assessment for which they will submit additional information on how they coped with the cyber-attack.

It added that this sample covers different business models and geographies to provide a "meaningful reflection of the euro area banking system and ensure there is efficient coordination with other supervisory activities".

"This predominantly qualitative exercise will not have an impact on capital through the Pillar 2 guidance, which is a bank-specific capital recommendation on top of the binding requirements," said the ECB. "Rather, the insights gained will be used for the wider supervisory assessment in 2024."

Following the test, supervisors will discuss the findings and lessons learned with each bank as part of the 2024 Supervisory Review and Evaluation Process, which assesses a bank’s individual risk profile.

The main findings of the exercise are expected to be revealed by the summer.



Share Story:

Recent Stories


Safeguarding economies: DNFBPs' role in AML and CTF compliance explained
Join FStech editor Jonathan Easton, NICE Actimize's Adam McLaughlin and Graham Mackenzie of the Law Society of Scotland as they look at the role Designated Non-Financial Businesses and Professions (DNFBPs) play in the financial sector, and the challenges they face in complying with anti-money laundering and counter-terrorist financing regulations.

Ransomware and beyond: Enhancing cyber threat awareness in the financial sector
Join FStech editor Jonathan Easton and Proofpoint cybersecurity strategist Matt Cooke as they discuss the findings of the State of the Phish 2023 report, diving into key topics such as awareness of cyber threats, the sophisticated techniques being used by criminals to target the financial sector, and how financial institutions can take a proactive approach to educating both their employees and their customers.

Click here to read the 2023 State of the Phish report from Proofpoint.

Cracking down on fraud
In this webinar a panel of expert speakers explored the ways in which high-volume PSPs and FinTechs are preventing fraud while providing a seamless customer experience.

Future of Planning, Budgeting, Forecasting, and Reporting
Sage Intacct is excited to present FSN The Modern Finance Forum’s “Future of Planning, Budgeting, Forecasting, and Reporting Global Survey 2022” results. With participation from 450 companies around the globe, the survey results highlight how organisations are developing their core financial processes by 2030.