Treasury calls on financial regulators to coordinate cybersecurity oversight

Highlighting 'fragmentation and overlap,' department suggests establishing one lead agency to align federal and state efforts.
JUN 14, 2017

Government oversight of cybersecurity could become more streamlined under a proposal from the Trump administration. In its first report on financial regulatory reform, the Treasury Department called for state and federal officials to work together to harmonize and coordinate examinations. "In cybersecurity, financial institutions share the same goal as regulatory agencies: maintaining the safety and soundness of the financial system by mitigating and protecting financial institutions and the sector from cybersecurity risks," states the June 12 report. "Better coordination on cybersecurity regulation is needed to achieve this goal and enhance the resiliency of the sector. Given the risk of fragmentation and overlap, Treasury recommends that federal and state financial regulatory agencies establish processes for coordinating regulatory tools and examinations across sub-sectors." In testimony before a House Appropriations subcommittee Monday, Treasury Secretary Steve Mnuchin said the Financial Stability Oversight Council should step in to sort out cybersecurity responsibilities. "One agency should be named as the lead agency and coordinate amongst all the rest of them," Mr. Mnuchin said. That is the approach Charles Schwab & Co. Inc. advocated in talks with the Trump administration. "We are pleased that Treasury recognized the importance of examination coordination in any financial regulatory system reform," Jeff Brown, Schwab senior vice president and head of legislative and regulatory affairs, wrote in an email Wednesday. In an earlier interview, he said the firm answers to four regulators on cybersecurity: the Securities and Exchange Commission, the Financial Industry Regulatory Authority Inc., the Office of the Comptroller of the Currency, and the Federal Reserve. "They don't communicate with each other, they don't coordinate with each other, they don't consolidate with each other," Mr. Brown said. "Each comes in and does their exam, which could take two months." The SEC and Finra have again this year made cybersecurity an examination priority. Each regulator also has released guidance over the last couple years, but neither has promulgated formal cybersecurity rules. State regulators also have increased their scrutiny of advisory firms' cyberdefenses. State participation in the Financial and Banking Information Infrastructure Committee helps to get the regulators on the same page, according to Joe Borg, Alabama securities director and president-elect of the North American Securities Administrators Association. "You're going to see a lot more coordination on cybersecurity going forward," Mr. Borg said this week at an Insured Retirement Institute conference in Washington. At the same meeting, Ted Nickel, Wisconsin insurance commissioner and president of the National Association of Insurance Commissioners, said insurance regulators are working on a set of cybersecurity principles. "I don't know that there's any overlap yet on the regulatory side," Mr. Nickel said at the IRI conference. "I think there just needs to be more coordination. If there are some areas of mutual oversight, we [should] align our cybersecurity rules or principles in a way that doesn't clash."

Latest News

Indie $8B RIA adds further leadership talent amid growth drive
Indie $8B RIA adds further leadership talent amid growth drive

Executives from LPL Financial, Cresset Partners hired for key roles.

Stock volatility remained low despite risk events
Stock volatility remained low despite risk events

Geopolitical tension has been managed well by the markets.

Fed minutes to provide signals on rate cuts
Fed minutes to provide signals on rate cuts

December cut is still a possiblity.

Trump's tariff talk roils markets, political leaders
Trump's tariff talk roils markets, political leaders

Canada, China among nations to react to president-elect's comments.

Ken Leech formally charged by SEC, US Attorney's Office
Ken Leech formally charged by SEC, US Attorney's Office

For several years, Leech allegedly favored some clients in trade allocations, at the cost of others, amounting to $600 million, according to the Department of Justice.

SPONSORED The future of prospecting: Say goodbye to cold calls and hello to smart connections

Streamline your outreach with Aidentified's AI-driven solutions

SPONSORED A bumpy start to autumn but more positives ahead

This season’s market volatility: Positioning for rate relief, income growth and the AI rebound