Guidance issued by financial sector authorities in response to the Covid-19 crisis seems to suggest that international efforts to come up with operational resilience standards should take into account at least the following elements:
- critical/essential employees: identifying the critical functions and employees that support important business services, as well as ensuring employees' safety and that they can safely resume their duties (remotely, if necessary).
- IT infrastructure: ensuring that IT infrastructure can support a sharp increase in usage over an extended period and taking steps to safeguard information security.
- third-party service providers: ensuring that external service providers and/or critical suppliers are taking adequate measures and are sufficiently prepared for a scenario in which there will be heavy reliance on their services.
- cyber resilience: remaining vigilant in order to identify and protect vulnerable systems, and detect, respond and recover from cyber attacks.
Read the full paper at: https://www.bis.org/fsi/fsibriefs2.htm