Reconnection Framework
Guidelines for Remediating Cyber Events Impacting the Financial Ecosystem
There are many issues that a firm compromised by a cyber incident must first address in order to reconnect to the financial ecosystem after the cyber event has been contained and mitigated. Most importantly is how the firm should communicate, coordinate, and provide assurance to (what could be dozens of) trading partners in the most efficient and effective way to convey that the problem has been resolved and will not recur. This is crucial so the firm and its trading partners can resume normal Business As Usual (BAU) operations.
This document provides a five-step mitigation framework – to Assess, Remediate, Assure, Reconnect, and Recover – and is intended to support and inform a technical view on reconnection as well as to inform broader resilience planning.
Guidelines for Remediating Cyber Events Impacting the Financial Ecosystem
There are many issues that a firm compromised by a cyber incident must first address in order to reconnect to the financial ecosystem after the cyber event has been contained and mitigated. Most importantly is how the firm should communicate, coordinate, and provide assurance to (what could be dozens of) trading partners in the most efficient and effective way to convey that the problem has been resolved and will not recur. This is crucial so the firm and its trading partners can resume normal Business As Usual (BAU) operations.
This document provides a five-step mitigation framework – to Assess, Remediate, Assure, Reconnect, and Recover – and is intended to support and inform a technical view on reconnection as well as to inform broader resilience planning.
Download the Framework
-
Reconnection Framework
This five-step mitigation framework is a voluntary series of steps, common practices, and activities that a firm can take to assess, contain, remediate, and recover from a significant cyber event impacting the firm and its downstream trading partners. It also provides the steps to communicate, provide assurance, and facilitate reconnection with trading partners.