Pas disponible en français
Carla Marques
- 10 March 2025
- MACROPRUDENTIAL BULLETIN - ARTICLE - No. 27Details
- Abstract
- Cyberattacks pose greater risk to financial stability than ever before as they have grown in both number and magnitude. A macroprudential perspective on cyber resilience stress testing is needed because cyber incidents can have a systemic impact as their effects spread across the financial sector via confidence, operational and financial mechanisms. While broader stress-testing principles also apply to cyber stress testing, stress testers need to focus in particular on clearly defining the overall objectives, determining the institutional perimeter, identifying material risk propagation channels, focusing on tail risks, considering relevant behavioural responses and combining the outcomes of bottom-up and top-down exercises. Based on these principles, cyber resilience stress tests can be executed following a bottom-up as well as a top-down approach. Top-down models can complement bottom-up results by providing harmonised modelling of system-wide financial interlinkages, behavioural responses and second-round effects.
- JEL Code
- G21 : Financial Economics→Financial Institutions and Services→Banks, Depository Institutions, Micro Finance Institutions, Mortgages
G28 : Financial Economics→Financial Institutions and Services→Government Policy and Regulation
D81 : Microeconomics→Information, Knowledge, and Uncertainty→Criteria for Decision-Making under Risk and Uncertainty
E58 : Macroeconomics and Monetary Economics→Monetary Policy, Central Banking, and the Supply of Money and Credit→Central Banks and Their Policies
C63 : Mathematical and Quantitative Methods→Mathematical Methods, Programming Models, Mathematical and Simulation Modeling→Computational Techniques, Simulation Modeling