Department of information security of the Central Bank of Russia

Main article: The policy of the Central Bank in the field of data protection (cyber security)

2018

Separation of management into two departments with preserving of FinCERT

In May, 2018 the Central Bank of Russian Federation creates new department which activity will be entirely devoted to information security.

The Board of Directors of the Central Bank made the decision to separate Head department of security and data protection into two independent divisions - department of information security and department of security of the Bank of Russia.^[1]

Creation of new department was announced by the vice-chairman of the Central Bank Ruslan Vesterovsky, submitting in the State Duma the annual report of the regulator.

The department is created based on the existing structural division - FinCERT (FINTSERT). According to TAdviser, at entry into the structure of department of FINTSERT will remain as separate division.

"We hope that selection in separate department will increase the importance and weight of this direction and also will promote increase in transparency and activity in interbank interaction concerning opposition to cybercriminals, - Dmitry Gvozdev, the CEO of Information Technologies of the Future company believes. – It is important that from actions for "protection against the regulator" Information Security Services of banks passed to comprehensive sincere cooperation with state agencies in the matter, and began to be built in really - in the part - national structures on fight against crimes in the field of information security".

Plan of creation of department of information security

On February 13, 2018 it became known of plans of the Bank of Russia to create department of the information security (IS). The new structure will undertake functions of the industry center. The vice-chairman of the Central Bank Dmitry Skobelkin at the X Ural forum "Information Security of the Financial Sphere" in Magnitogorsk told about it.

Literally the other day the management of the Bank of Russia made the decision on creation of specialized division — department of information security of the Bank of Russia which will take functions of the industry center. The Bank of Russia will also be Competence Center on ensuring cyberstability of the organizations of the financial sector. According to the Bank of Russia, it is reasonable to perform the specified exchange through this industry center — Skobelkina of TASS cites words.

According to him, the new cybersecurity department will include FinCERT (FINTSERT) and some other divisions of the regulator. The structure will coordinate information exchange about cyber attacks between financial market and the State detection system, warnings and mitigations of consequences of the computer attacks on information resources of the Russian Federation (State system of detection, prevention and elimination of consequences of computer attacks).

The organization and coordination of works on improvement of forms and methods of interaction of financial institutions for information security support and increase in their readiness for opposition to information threats will become the main objectives of Competence Center.

In 2018 the Central Bank is going to activate information exchange with banks concerning security violations. According to Skobelkin, by February  over 600 organizations participate in information exchange, and these functions are assigned to FINTSERT.^[2]

2017: Interview of TAdviser with the deputy chief of head department of security and data protection of the Central Bank by Artem Sychev

The deputy chief of Head department of security and data protection of the Central Bank Artem Sychev in an interview of TAdviser in December, 2017 told about work of FinCERT (FINTSERT), the changing landscape of cyberthreats and imperfections of the existing legislation in terms of information security in the financial sector. Read an interview here.

See Also

• Information security in banks

Notes