Media Releases
Published Date: 07 October 2017

MAS’ International Panel Discusses Strategies to Enhance the Cyber Resilience of Singapore’s Financial Sector

Singapore, 6 October 2017… The Monetary Authority of Singapore's (MAS) Cyber Security Advisory Panel (CSAP)1 discussed strategies to enhance the cyber resilience of Singapore’s financial sector, at its inaugural meeting on 5-6 October. The discussions covered areas ranging from regulatory guidance, supervision, and surveillance to information sharing and capability development. The list of CSAP members who attended the meeting can be found in Annex A.

CSAP members agreed that having strong basic cyber hygiene practices was fundamental in securing cyber resilience.  They also suggested that it was important to strengthen the competency and capability of the boards of financial institutions to exercise effective oversight of cyber risk management.  CSAP members highlighted the importance of conducting realistic penetration tests, including “red-teaming”2.  

Acknowledging the challenge posed by the voluminous information that is collated in monitoring for cyber incidents, CSAP members advocated the use of data analytics and machine learning to make sense of the information.  They were unanimous in emphasising the importance of timely information sharing by financial institutions of cyber incidents and developments.

Mr Ravi Menon, Managing Director, MAS, who chaired the CSAP meeting, said “It was a rich and engaging discussion.  The meeting provided MAS an opportunity to validate its strategy for strengthening cyber resilience in the financial sector and to identify areas where we need to do more.  We are grateful to CSAP members for their sharp insights and helpful suggestions.”

Mr David Koh, Chief Executive, Cyber Security Agency of Singapore and a member of the CSAP, said, “The creation of the CSAP is a laudable initiative by MAS. The Panel brings together distinguished individuals from around the world, with a rich and diverse range of experience and expertise in the cybersecurity, banking and finance domains. The quality insights and ideas generated will certainly boost our collective efforts to augment the cybersecurity posture of Singapore’s banking and financial sector.”

6 The CSAP also met members of The Association of Banks in Singapore’s Standing Committee on Cyber Security, comprising of Chief Information Security Officers from key financial institutions. They exchanged views on technological developments in the financial sector, such as FinTech and artificial intelligence, and cyber security challenges faced by the industry. CSAP members also met DPM Tharman Shanmugaratnam, Chairman of MAS, and exchanged views on developing talents and capabilities in cyber security.

7 The CSAP will convene again in 2018 for its next annual meeting.

 

1The media release ‘MAS Sets Up International Advisory Panel for Cyber Security’ can be found here: /news/media-releases/2017/mas-sets-up-international-advisory-panel-for-cyber-security  

2Red-teaming is the use of a red-team (i.e. a team of ethical hackers) to continuously test for weaknesses in an organization’s people, processes and technology by adopting a hacker’s mind-set.

***

Annex A – List of CSAP members who attended the meeting

1. Ms Valerie Abend
Managing Director, Financial Services North America Security & Global Cyber Regulatory Lead, Accenture Security

2. Mr Keith Alexander
Founder and Chief Executive Officer, IronNet Cybersecurity Inc.

3. Mr Adrian Asher
Group Chief Information Security Officer, London Stock Exchange Group

4. Mr David Koh
Chief Executive, Cyber Security Agency of Singapore

5. Mr Vincent Loy
Partner, Financial Crime & Cyber Leader, PricewaterhouseCoopers Risk Services Pte. Ltd.

6. Ms Cheri McGuire
Group Chief Information Security Officer, Standard Chartered Bank

7. Mr Udi Mokady
Chairman and Chief Executive Officer, CyberArk