Skip to main content
Skip to navigation

Regulatory Policy

CFTC commissioner crafting potential proposed rule on cyber resiliency

By Adrianne Appel2023-06-21T21:45:00

Organizations involved with the U.S. derivatives market must shift out of hack-response mode and into a state of cyber resiliency. If they don’t, a potential proposed rule at the Commodity Futures Trading Commission (CFTC) might force them to get there.

Members of the agency are currently drafting its first cyber resilience rule for swap dealers and futures commission merchants, CFTC Commissioner Christy Goldsmith Romero said Tuesday in remarks delivered at an industry event. The potential proposed rule, which could release “in the next few months,” according to Goldsmith Romero, could seek to make those in the C-suite responsible for ensuring their organizations are prepared for cyberattacks.

The proposal would first need to be approved by the CFTC before being released, said Goldsmith Romero.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

News Brief
CFTC assembles task forces to combat cyber and tech issues, ESG fraud

2023-06-30T16:15:00Z By Jeff Dale

The Enforcement Division of the Commodity Futures Trading Commission announced it established two new task forces to combat cyberattacks and misuse of technology and environmental fraud.
Premium
SEC’s Grewal spotlights enforcement focus on cyber disclosures

2023-06-29T21:32:00Z By Adrianne Appel

The No. 1 priority at the Securities and Exchange Commission after organizations are impacted by a cybersecurity incident is that investors receive timely and accurate disclosures, according to Enforcement Division Director Gurbir Grewal.
Premium
Shades of SolarWinds in lessons from MOVEit hack

2023-06-14T17:50:00Z By Neil Hodge

A ransomware attack affecting some of the U.K.’s largest corporations has highlighted once again how exposed organizations can be if the levels of cybersecurity used by their third parties are not as strong as expected.

More from Regulatory Policy

Article
Compliance must focus on corruption as EU and U.K. seek to tackle rising risks

2026-03-19T14:50:00Z By Ruth Prickett

Corruption isn’t something that happens somewhere else, in other countries and committed by other people. Nowhere is corruption-proof, and new rules being introduced in the EU and the U.K. aim to focus compliance officers on the full gamut of risks in all jurisdictions and every sector.
Article
Employment law in the age of AI: Compliance considerations

2026-03-18T00:00:00Z By Jaclyn Jaeger

Employment law in the age of AI is evolving faster than many companies can keep pace. As more states enact AI laws and as more case law piles on, chief compliance officers and in-house counsel must ensure that compliance policies and procedures evolve as AI legal and compliance risks evolve.
Article
Compliance must future-proof AI projects to meet evolving regulations

2026-03-16T20:22:00Z By Ruth Prickett

AI implementations are surging, but many new systems are being abandoned after companies have invested in expensive projects. Now evolving AI regulation is adding to the list of reasons why new systems may fail. Compliance must watch emerging regulatory developments and ensure that any new AI tools are capable of ...