Please enable JavaScript.
Coggle requires JavaScript to display documents.
BCM & Reg Resilience for Eq & Ox - Coggle Diagram
BCM & Reg Resilience for Eq & Ox
Regulatory Requirements
Equities
Reg SCI
Ensure exchange maintains resilient infrastructure
:red_flag:
Required annual testing and incident reporting
SEC Rule 17a-4: Record Keeping & DR
Retention of records and backup procedures
Regulator S-P: Privacy and Security for client data
Proper safeguard for sensitive customer info
FINRA Rule 4370: BCP
Must maintain and annually review BC/DR plans
Options
Regulation 39.18DCO System safeguards and resilience
Business continuity and DR for clearinghouses
:red_flag:
OCC BCP Requirements
Market-wide clearing operations remain resilient
Lessons Learned
Tech/Infra risks
SPoF
Clearing dependencies
Compliance and Audit
Inadequate DR testing
BIAs
Historical exchange failure/DR insight
2015 NYSE halt
Circuit breaker design
2013 SIP outage
Best Practices
Cyber & Data Security
Data encryption & Multi-site replication
Ensure sensitive data is protected and backed up in multiple regions
Cloud & DC DR evaluation
Regular Pen testing and security drills
Resilience Planning
Redundant Infrastructure
ensure seamless failover between primary and DR sites
Reg SCI annual test and compliance reporting
MWCB & SIP testing
Communication & Coordination
Establish clear regulatory escalation procedures
Ongoing Focus
Third-party risk and vendor oversight
Market wide testing and incident response
Industry wide exercises
Realtime failover drills
Reg monitoring & testing
SIFMA, FIA, OCC DR testing
Audit readiness for SEC & CFTC
Up to date documentation on BCM capabilities
Annual Reg SCI, SIP and MWCB tests