IT Risk & Security

SEBI extends software testing requirements to commodity firms

The Security and Exchange Board of India (SEBI) has said that from April 2016 commodities traders will be subject to the same software testing guidelines that apply to Indian securities exchanges SEBI’s 2013 guidelines set out how brokers operating on the securities exchanges must test software; how the exchanges must implement an approval process for the software »

Markit teams with banks for “Know Your Vendor” platform launch

Know Your Vendor

Markit, the information vendor, is teaming up with three leading banks to launch a “Know Your Vendor” database, which is calling KY3P. Barclays, HSBC and Morgan Stanley are working with Markit on the launch and will put information about their own third party vendors onto the platform, which will be delivered as a software as service via Dell »

Are regulators right to focus on robo-investing risks?

BlackRock, Vanguard, Fidelity and other leading names in fund management have been buying robo-investment platforms, or starting their own. Industry watchers have been predicting a “race to the bottom” as fees are cut to persuade customers to sign up. Especially in Europe, where the robo platforms have been charging higher fees than their US counterparts. »

NCC shares upgraded by broker on security business boom

Brokerage firm Peel Hunt has upped its valuation for shares in NCC, the London-listed security and testing firm which has reported a doubling of security “incidents” reported to it over the past year. Peel Hunt cited a number of key shifts in the marketplace for cyber-security services amounting to a: “Substantial broadening of the approach »

Asia to drive growth in security testing certification

Ian Glover-CREST

Ian Glover, president of CREST — the UK-based Council of Registered Ethical Testers — expects his organisation to certify a growing number of penetration and threat intelligence testing companies in 2016 as demand for their services grows. CREST, a not-for-profit organisation whose objective is to represent the information security industry by demonstrating the competence of »

“Get to grips with IT risk” say Irish, German central banks

Senior officials from both Central Bank of Ireland and the Deutsche Bundesbank have warned bank management teams that they must work harder to ensure they have the right culture in place to tackle IT risks. “We believe that there is significant weakness in this area and will be seeking change,” said Gerry Cross, the Irish central bank’s »

EU directive will force major financial firms to disclose cyber attacks


Among Europe’s largest banks, the long-established practice has been to keep breaches of cyber-security quiet – or as quiet as possible.  But a major change is in the pipeline:  European-wide legislation that will force firms to report cyber attacks to national incident teams. The European Commission has drafted a European Network and Infrastructure directive, which is now waiting »

SEC’s audit trail repository ready for comment

It has been described as “the largest financial IT project of all time”. So perhaps it is not surprising that it has taken more than five years to narrow down the list of bidders who want to build the Consolidated Audit Trail (CAT) — the giant data repository for stock orders and quotes on US »

Page 9 of 9«789