Cyber Resilience Oversight Expectations

CROE Methodology

The Cyber Resilience Oversight Expectations published by the European Central Bank is an organisaton wide resilience assessment.

Contact us for more information about the CROE methodology.

International Adoption

The international adoption of the CROE methodology stretches beyond the Eurosystem and it has been adopted by the Worldbank in 2019. 

The CROE methodology is based on the global standardsetting by the CPMI-IOSCO committee´s Guidance on Cyber Resilience for Financial Market Infrastructures published in 2016.

Wider Application


The CROE is targeted for financial market infrastructures.

It has demonstrated a wider applicability in recent years and can be used as a good practice in other critical infrastructures to perform an organisation wide resilience assessment.

Resources

More background information about the Cyber Resilience Oversight Expectations Assessment methodology can be found on the websites of the European Central Bank, the Worldbank and the Bank for International Settlements with the links below:

ECB – Cyber Resilience Oversight Expectations
December 2018

Worldbank Financial Inclusion Global Initiative – CROE 
November 2019

Bank for International Settlements CPMI-IOSCO Guidance on Cyber Resilience for Financial Market Infrastructures
June 2016