Skip to main content
Skip to navigation

Regulatory Policy

CFTC commissioner crafting potential proposed rule on cyber resiliency

By Adrianne Appel2023-06-21T21:45:00

Organizations involved with the U.S. derivatives market must shift out of hack-response mode and into a state of cyber resiliency. If they don’t, a potential proposed rule at the Commodity Futures Trading Commission (CFTC) might force them to get there.

Members of the agency are currently drafting its first cyber resilience rule for swap dealers and futures commission merchants, CFTC Commissioner Christy Goldsmith Romero said Tuesday in remarks delivered at an industry event. The potential proposed rule, which could release “in the next few months,” according to Goldsmith Romero, could seek to make those in the C-suite responsible for ensuring their organizations are prepared for cyberattacks.

The proposal would first need to be approved by the CFTC before being released, said Goldsmith Romero.

THIS IS MEMBERS-ONLY CONTENT

cw-membership

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Related articles

News Brief
CFTC assembles task forces to combat cyber and tech issues, ESG fraud

2023-06-30T16:15:00Z By Jeff Dale

The Enforcement Division of the Commodity Futures Trading Commission announced it established two new task forces to combat cyberattacks and misuse of technology and environmental fraud.
Premium
SEC’s Grewal spotlights enforcement focus on cyber disclosures

2023-06-29T21:32:00Z By Adrianne Appel

The No. 1 priority at the Securities and Exchange Commission after organizations are impacted by a cybersecurity incident is that investors receive timely and accurate disclosures, according to Enforcement Division Director Gurbir Grewal.
Premium
Shades of SolarWinds in lessons from MOVEit hack

2023-06-14T17:50:00Z By Neil Hodge

A ransomware attack affecting some of the U.K.’s largest corporations has highlighted once again how exposed organizations can be if the levels of cybersecurity used by their third parties are not as strong as expected.

More from Regulatory Policy

Article
EU loosens AI and data rules

2025-12-24T18:45:00Z By Neil Hodge

Europe has been at the forefront of designing strong—but flexible—rules around data use and the safe development of AI, but the EU recently announced plans to simplify some key measures around data privacy and AI governance, which have met with mixed responses.
Premium
Q&A with FINRA’s Greg Ruppert on the organization’s use of Artificial Intelligence

2025-12-19T20:33:00Z By Aaron Nicodemus

Greg Ruppert, Chief Regulatory Operations Officer at the Financial Industry Regulatory Authority (FINRA), recently shared insights with Compliance Week regarding the self-regulatory organization’s use of Artificial Intelligence in monitoring trends in the market, spotting threats, and keeping its members informed.
Premium
EU financial firms must prepare now for new rules on critical third-party arrangements

2025-12-15T18:04:00Z By Ruth Prickett

European banks and financial institutions must prepare now for stringent new rules on third-party suppliers.