2020年网络安全实践报告：网络事件的响应和恢复 - 金融稳定理事会（英文版）（22页）.pdf

1、 Effective Practices for Cyber Incident Response and Recovery Final Report 19 October 2020 The Financial Stability Board (FSB) coordinates at the international level the work of national financial authorities and international standard-setting bodies in order to develop and promote the implementatio

2、n of effective regulatory, supervisory and other financial sector policies. Its mandate is set out in the FSB Charter, which governs the policymaking and related activities of the FSB. These activities, including any decisions reached in their context, shall not be binding or give rise to any legal

3、rights or obligations. Contact the Financial Stability Board Sign up for e-mail alerts: www.fsb.org/emailalert Follow the FSB on Twitter: FinStbBoard E-mail the FSB at: fsbfsb.org Copyright 2020 Financial Stability Board. Please refer to the terms and conditions iii Table of Contents Executive summa

4、ry . 1 Introduction . 2 Development of the toolkit . 2 The toolkit . 3 1. Governance . 4 2. Planning and preparation . 7 3. Analysis . 10 4. Mitigation . 12 5. Restoration and recovery . 13 6. Coordination and communication . 14 7. Improvement . 16 Conclusion . 18 iv 1 Executive summary Cyber incide

5、nts1 pose a threat to the stability of the global financial system. In recent years, there have been a number of cyber incidents that have significantly impacted financial institutions and the ecosystems in which they operate.2 A significant cyber incident, if not properly contained, could seriously

6、 disrupt the financial system, including critical financial infrastructure, leading to broader financial stability implications. Efficient and effective response to and recovery from a cyber incident by organisations in the financial ecosystem are essential to limit any related financial stability r