Bank of England orders Visa to hire PwC after IT error
In June 2018, Visa’s payment system was struck down by a hardware failure, impacting millions of customers across the UK and the rest of Europe. People were left unable to pay for goods and services across the continent, while the outage was not associated with any unauthorised access or cyber-attack.
At the time, the Bank of England immediately contacted Visa to find out when the system would be back up and running. The unprecedented crash eventually led to Threadneedle Street implementing an extended investigation into the IT systems of financial companies. Ultimately, in response to a jump in frequency and severity of the incidents, the Bank of England's Financial Policy Committee put together a new framework around resilience and risk, setting minimum service levels to keep the economy ticking in the event of a plausible disruption.
Now, the central bank of the UK said that it will use statutory powers to direct Visa to fully implement its recommendation of an independent review, which found that it was unprepared for the failure and failed to communicate effectively with those impacted. Part of this includes requiring Visa to appoint PwC to “assess Visa Europe’s progress in implementing these recommendations”. PwC will provide a final report to the Bank later this year assessing the progress in the implementation of each recommendation.
The Bank of England said the incident had the potential to affect confidence in the financial system; however, it also acknowledged that Visa has accepted all of the requirements, and appears committed to implementing them. Visa has previously stated that the issue was caused by a “very rare partial failure” of a switch in one of its data centres, meaning back-up centres could not automatically process all transactions. It has since fixed the issue, while arguing it was taking “all necessary steps” to prevent the failure from happening again.
The action taken by the Bank of England does not imply a breach of a regulatory requirement, or constitute an enforcement action. The reforms it has backed to be carried out were initially devised by PwC’s fellow Big Four member EY.
source consultancyuk
Industry: Cyber Security News
Latest Jobs
-
- PCI QSA needed. Discreet Opportunity | London | Client facing
- London
- N/A
-
CH08421 PCI QSA needed. Discreet Opportunity | London | Client facing. Payment Card Industry - Qualified Security Assessor - London Seeking someone looking to accelerate their career, into a variety of interesting clients / projects. Must be happy to be onsite with clients- this is not a fully remote role. You must currently hold a valid CISSP or CISM or ISO27001 lead implementer certification AND one of the following; CISA, GSNA, iso27001 lead Auditor, CIA or IRCA ISMS auditor+ Visa sponsorship not available. Apply today for more information chris.holt@dclsearch.com Use this whatapp link to reach out https://wa.me/message/6USF5RAQBOZIP1
-
- Network / Security Infrastructure Engineer | West London | Permanent
- London
- N/A
-
Network / Security Infrastructure Engineer | West London | Current Config, Install, upgrade experience On prem / Datacetner experience essential. Hands on experience MUST include: Routing, Switching, Network Security (firewall, IDS etc), Microsoft exchange / Exchange 365. Scripting / automation experience wanted. Python, Powershell etc Regular travel to West London is required. Visa sponsorship not available. Apply today for more information chris.holt@dclsearch.com Use this whatapp link to reach out https://wa.me/message/6USF5RAQBOZIP1
-
- Security Operations / information Security Analyst / Engineer. London
- London
- N/A
-
Security Operations / information Security Analyst / Engineer needed for a London opportunity. A technical hands on role to investigate, escalate and proactively work to protect a globally recognised brand. Someone with SOC Analyst / security engineering background would be well suited. This position will join a small team and would suit someone that has broad experience across the security threat landscape. Experience / knowledge across industry GRC standards such NIST, ISO27001 etc very advantageous and a priority. You will work across multiple teams proactively working to secure the business. Must be able to commute to Central London 3 days a week. Visa sponsorship not available Apply today to find out more.
-
- Security Cleared Penetration Tester: United Kindom
- N/A
- N/A
-
Security Cleared Penetration Tester Deliver technical Penetration tests to the NCSC CHECK standard. Active CHECK Member or Leader status desirable either in Web Application or Infrastructure. Reach out to find out more. Whatsapp directly here https://wa.me/message/6USF5RAQBOZIP1 Or apply today