ECB publishes European framework for testing financial sector resilience to cyber attacks
The European Central Bank (ECB) yesterday published the European Framework for Threat Intelligence-based Ethical Red Teaming (TIBER-EU), which is the first Europe-wide framework for controlled and bespoke tests against cyber attacks in the financial market.
- TIBER-EU is the first European framework for controlled cyber hacking to test resilience of financial market entities
- Framework facilitates testing for cross-border entities under oversight of several authorities
- Goals are to help entities gain insight about their protection, detection and response capabilities and to help them fighting cyber attacks
The TIBER-EU framework facilitates a harmonised European approach towards intelligence-led tests which mimic the tactics, techniques and procedures of real hackers who can be a genuine threat. TIBER-EU based tests simulate a cyber attack on an entity’s critical functions and underlying systems, such as its people, processes and technologies. This helps the entity to assess its protection, detection and response capabilities against potential cyber attacks.
The TIBER-EU framework has been designed for national and European authorities and entities that form the core financial infrastructure, including entities with cross-border activities which fall within the regulatory remit of several authorities. The framework can be used for any type of financial sector entity, as well as entities in other sectors.
It is up to the relevant authorities and the entities themselves to determine if and when TIBER-EU based tests are performed. Tests will be tailor-made and will not result in a pass or fail – rather they will provide the tested entity with insight into its strengths and weaknesses, and enable it to learn and evolve to a higher level of cyber maturity.
For media queries, please contact Lena-Sophie Demuth, tel.: +49 69 1344 5423.
- For the purposes of the TIBER-EU framework, entities include payment systems, central securities depositories, central counterparty clearing houses, trade repositories, credit rating agencies, stock exchanges, securities settlement platforms, banks, payment institutions, insurance companies, asset management companies and any other service providers deemed critical for the functioning of the financial sector.
- The ECB promotes the safety and efficiency of payment, clearing and settlement systems in the euro area under its oversight mandate, guided by oversight regulations, standards, guidelines and expectations. At Eurosystem level, the ECB is the competent authority for the systemically important payment systems in the euro area: TARGET2, EURO1 and STEP2-T, and is the lead overseer for TARGET2-Securities; oversight of other payment systems lies with the national central banks.
Directorate General Communications
Sonnemannstrasse 20, 60314 Frankfurt am Main, Germany
Tel.: +49 69 1344 7455, E-mail: email@example.com
Reproduction is permitted provided that the source is acknowledged.
Latest News from
Consultation on Air Quality - Executive Summary14/02/2020 12:20:00
The Secretariat of the Commission for Environment, Climate Change and Energy (ENVE) of the CoR is in the process of informing other EU institutional and non institutional actors about the Implementation Report of the consultation on Air Quality, whose Executive Summary is already available here.
Tipperary councillor to lead Irish delegation in EU assembly14/02/2020 11:20:00
Michael Murphy of Tipperary County Council will lead the national delegation of Ireland to the European Committee of the Regions, whose members met on 11-13 February for the first time in their new five-year mandate. He will also lead its economic-policy commission.
Artificial intelligence: MEPs want to ensure a fair and safe use for consumers13/02/2020 12:25:00
Parliament calls for a strong set of rights to protect consumers in the context of artificial intelligence and automated decision-making, in a resolution approved on Wednesday.
EU-UK future relations: “level playing field” crucial to ensure fair competition13/02/2020 08:20:00
Parliament calls for a level playing field to be guaranteed through robust commitments, and “dynamic alignment” of EU-UK rules.
Stop illegal trade in cats and dogs, says European Parliament12/02/2020 16:51:00
To protect animal welfare, pet owners and public health, MEPs call for an EU Action Plan to end illegal trade in companion animals.
More than money: the long-term EU budget is a tool for Europe’s future12/02/2020 15:51:00
MEPs underlined that Parliament will only give its consent to a budget that meets the European Union’s ambitions, in a debate on EU funding for 2021-2027.
Parliament objects to lead in PVC to protect public health and the environment12/02/2020 14:51:00
MEPs have vetoed a Commission proposal that would have allowed some lead in recycled PVC.
Syria, Africa, Venezuela and US Middle East plan to be debated12/02/2020 13:25:00
MEPs will debate the US’ recently presented Middle East plan, the new EU-Africa strategy and the current security situation in Syria, on Tuesday afternoon.