Cyber Risk for the Financial Sector: A Framework for Quantitative Assessment


Book Description

Cyber risk has emerged as a key threat to financial stability, following recent attacks on financial institutions. This paper presents a novel documentation of cyber risk around the world for financial institutions by analyzing the different types of cyber incidents (data breaches, fraud and business disruption) and identifying patterns using a variety of datasets. The other novel contribution that is outlined is a quantitative framework to assess cyber risk for the financial sector. The framework draws on a standard VaR type framework used to assess various types of stability risk and can be easily applied at the individual country level. The framework is applied in this paper to the available cross-country data and yields illustrative aggregated losses for the financial sector in the sample across a variety of scenarios ranging from 10 to 30 percent of net income.




Cyber Risk, Market Failures, and Financial Stability


Book Description

Cyber-attacks on financial institutions and financial market infrastructures are becoming more common and more sophisticated. Risk awareness has been increasing, firms actively manage cyber risk and invest in cybersecurity, and to some extent transfer and pool their risks through cyber liability insurance policies. This paper considers the properties of cyber risk, discusses why the private market can fail to provide the socially optimal level of cybersecurity, and explore how systemic cyber risk interacts with other financial stability risks. Furthermore, this study examines the current regulatory frameworks and supervisory approaches, and identifies information asymmetries and other inefficiencies that hamper the detection and management of systemic cyber risk. The paper concludes discussing policy measures that can increase the resilience of the financial system to systemic cyber risk.




Powering the Digital Economy: Opportunities and Risks of Artificial Intelligence in Finance


Book Description

This paper discusses the impact of the rapid adoption of artificial intelligence (AI) and machine learning (ML) in the financial sector. It highlights the benefits these technologies bring in terms of financial deepening and efficiency, while raising concerns about its potential in widening the digital divide between advanced and developing economies. The paper advances the discussion on the impact of this technology by distilling and categorizing the unique risks that it could pose to the integrity and stability of the financial system, policy challenges, and potential regulatory approaches. The evolving nature of this technology and its application in finance means that the full extent of its strengths and weaknesses is yet to be fully understood. Given the risk of unexpected pitfalls, countries will need to strengthen prudential oversight.




OECD SME and Entrepreneurship Outlook 2019


Book Description

The new OECD SME and Entrepreneurship Outlook presents the latest trends in performance of small and medium-sized enterprises (SMEs) and provides a comprehensive overview of business conditions and policy frameworks for SMEs and entrepreneurs. This year’s edition provides comparative evidence on business dynamism, productivity growth, wage gaps and export trends by firm size across OECD countries and emerging economies.




Cyber Risk Surveillance: A Case Study of Singapore


Book Description

Cyber risk is an emerging source of systemic risk in the financial sector, and possibly a macro-critical risk too. It is therefore important to integrate it into financial sector surveillance. This paper offers a range of analytical approaches to assess and monitor cyber risk to the financial sector, including various approaches to stress testing. The paper illustrates these techniques by applying them to Singapore. As an advanced economy with a complex financial system and rapid adoption of fintech, Singapore serves as a good case study. We place our results in the context of recent cybersecurity developments in the public and private sectors, which can be a reference for surveillance work.




At the Nexus of Cybersecurity and Public Policy


Book Description

We depend on information and information technology (IT) to make many of our day-to-day tasks easier and more convenient. Computers play key roles in transportation, health care, banking, and energy. Businesses use IT for payroll and accounting, inventory and sales, and research and development. Modern military forces use weapons that are increasingly coordinated through computer-based networks. Cybersecurity is vital to protecting all of these functions. Cyberspace is vulnerable to a broad spectrum of hackers, criminals, terrorists, and state actors. Working in cyberspace, these malevolent actors can steal money, intellectual property, or classified information; impersonate law-abiding parties for their own purposes; damage important data; or deny the availability of normally accessible services. Cybersecurity issues arise because of three factors taken together - the presence of malevolent actors in cyberspace, societal reliance on IT for many important functions, and the presence of vulnerabilities in IT systems. What steps can policy makers take to protect our government, businesses, and the public from those would take advantage of system vulnerabilities? At the Nexus of Cybersecurity and Public Policy offers a wealth of information on practical measures, technical and nontechnical challenges, and potential policy responses. According to this report, cybersecurity is a never-ending battle; threats will evolve as adversaries adopt new tools and techniques to compromise security. Cybersecurity is therefore an ongoing process that needs to evolve as new threats are identified. At the Nexus of Cybersecurity and Public Policy is a call for action to make cybersecurity a public safety priority. For a number of years, the cybersecurity issue has received increasing public attention; however, most policy focus has been on the short-term costs of improving systems. In its explanation of the fundamentals of cybersecurity and the discussion of potential policy responses, this book will be a resource for policy makers, cybersecurity and IT professionals, and anyone who wants to understand threats to cyberspace.




Canada


Book Description

This Financial System Stability Assessment paper discusses that Canada has enjoyed favorable macroeconomic outcomes over the past decades, and its vibrant financial system continues to grow robustly. However, macrofinancial vulnerabilities—notably, elevated household debt and housing market imbalances—remain substantial, posing financial stability concerns. Various parts of the financial system are directly exposed to the housing market and/or linked through housing finance. The financial system would be able to manage severe macrofinancial shocks. Major deposit-taking institutions would remain resilient, but mortgage insurers would need additional capital in a severe adverse scenario. Housing finance is broadly resilient, notwithstanding some weaknesses in the small non-prime mortgage lending segment. Although banks’ overall capital buffers are adequate, additional required capital for mortgage exposures, along with measures to increase risk-based differentiation in mortgage pricing, would be desirable. This would help ensure adequate through-the cycle buffers, improve mortgage risk-pricing, and limit procyclical effects induced by housing market corrections.




Global Financial Stability Report, October 2019


Book Description

The October 2019 Global Financial Stability Report (GFSR) identifies the current key vulnerabilities in the global financial system as the rise in corporate debt burdens, increasing holdings of riskier and more illiquid assets by institutional investors, and growing reliance on external borrowing by emerging and frontier market economies. The report proposes that policymakers mitigate these risks through stricter supervisory and macroprudential oversight of firms, strengthened oversight and disclosure for institutional investors, and the implementation of prudent sovereign debt management practices and frameworks for emerging and frontier market economies.




Measuring and Managing Information Risk


Book Description

Using the factor analysis of information risk (FAIR) methodology developed over ten years and adopted by corporations worldwide, Measuring and Managing Information Risk provides a proven and credible framework for understanding, measuring, and analyzing information risk of any size or complexity. Intended for organizations that need to either build a risk management program from the ground up or strengthen an existing one, this book provides a unique and fresh perspective on how to do a basic quantitative risk analysis. Covering such key areas as risk theory, risk calculation, scenario modeling, and communicating risk within the organization, Measuring and Managing Information Risk helps managers make better business decisions by understanding their organizational risk. - Uses factor analysis of information risk (FAIR) as a methodology for measuring and managing risk in any organization. - Carefully balances theory with practical applicability and relevant stories of successful implementation. - Includes examples from a wide variety of businesses and situations presented in an accessible writing style.




Global Financial Stability Report, April 2021


Book Description

Extraordinary policy measures have eased financial conditions and supported the economy, helping to contain financial stability risks. Chapter 1 warns that there is a pressing need to act to avoid a legacy of vulnerabilities while avoiding a broad tightening of financial conditions. Actions taken during the pandemic may have unintended consequences such as stretched valuations and rising financial vulnerabilities. The recovery is also expected to be asynchronous and divergent between advanced and emerging market economies. Given large external financing needs, several emerging markets face challenges, especially if a persistent rise in US rates brings about a repricing of risk and tighter financial conditions. The corporate sector in many countries is emerging from the pandemic overindebted, with notable differences depending on firm size and sector. Concerns about the credit quality of hard-hit borrowers and profitability are likely to weigh on the risk appetite of banks. Chapter 2 studies leverage in the nonfinancial private sector before and during the COVID-19 crisis, pointing out that policymakers face a trade-off between boosting growth in the short term by facilitating an easing of financial conditions and containing future downside risks. This trade-off may be amplified by the existing high and rapidly building leverage, increasing downside risks to future growth. The appropriate timing for deployment of macroprudential tools should be country-specific, depending on the pace of recovery, vulnerabilities, and policy tools available. Chapter 3 turns to the impact of the COVID-19 crisis on the commercial real estate sector. While there is little evidence of large price misalignments at the onset of the pandemic, signs of overvaluation have now emerged in some economies. Misalignments in commercial real estate prices, especially if they interact with other vulnerabilities, increase downside risks to future growth due to the possibility of sharp price corrections.