Release Number 7129-15

March 3, 2015

CFTC Staff to Hold Roundtable on Cybersecurity and System Safeguards Testing

Washington, DC — Staff of the U.S. Commodity Futures Trading Commission (CFTC) will hold a public roundtable on Cybersecurity and System Safeguards Testing on Wednesday, March 18, 2015, from 9:00 a.m. to 5:00 p.m. at CFTC’s Washington, DC, Headquarters at 1155 21st St. NW. Specifically, the roundtable will review system safeguards testing requirements, including potential enhancements to further strengthen the resilience of futures exchanges, clearing organizations, and swap data repositories. The CFTC is also considering how best to leverage enhanced system safeguards testing requirements, including independent testing, to satisfy regulatory requirements for these entities.

Roundtable participants will present perspectives on cybersecurity testing issues from a range of viewpoints, including those of registered entities, market participants, industry associations, organizations that have promulgated best practices and standards for cybersecurity, and other government agencies with relevant expertise.

The Roundtable’s four panels will address the need for testing in the current cybersecurity environment, as well as certain types of system safeguards testing and associated risk assessment practices, including: vulnerability and penetration testing, key controls testing, and business continuity-disaster recovery testing.

The Roundtable will be open to the public, with seating on a first-come, first-served basis. Persons requiring special accommodations to attend the meeting because of a disability should notify Stephanne Player at 202-418-5255. Members of the public may also listen by telephone and should be prepared to provide their first name, last name, and affiliation. Following the Roundtable, a transcript of the proceedings will be posted on

Listening Information:

U.S. Toll Free:


International (Toll Number):


Participant Passcode:


Roundtable on Cybersecurity and System Safeguards Testing Agenda:

8:15 am


9:00 am - 9:30 am

Opening remarks

9:30 am - 10:45 am

Panel One: The need for testing in the current cybersecurity environment

10:45 am -11:00 am


11:00 am -12:30 pm

Panel Two: Vulnerability and penetration testing

12:30 pm - 1:30 pm

Lunch break

1:30 pm - 3:00 pm

Panel Three: Key controls testing

3:00 pm - 3:15 pm


3:15 pm - 4:45 pm

Panel Four: Business continuity and disaster recovery testing

4:45 pm - 5:00 pm

Concluding remarks

5:00 pm

Roundtable concludes

For further information contact: Parisa Abadi, Attorney Advisor, Division of Clearing and Risk, at (202) 418-6620 or [email protected]; or David Taylor, Associate Director, Division of Market Oversight, at (202) 418-5488 or [email protected].

Last Updated: October 5, 2015