Brokers asked not to apply import substitution requirements to their information protection

Russian brokers appealed to the Central Bank and the Federal Service for Technical and Export Control (FSTEC) with a request not to classify their information protection and security systems as critical information infrastructure (CII) facilities. The corresponding letter was sent to regulators by the National Association of Stock Market Participants (NAUFOR). The newspaper reported Vedomosti with a link to the document.

In May of this year, the President of Russia signed a decree according to which CII subjects are prohibited from using data protection programs from unfriendly or affiliated countries from 2025. NAUFOR said that in order to comply with the decree, companies will have to re-equip their protection systems. According to them, the costs of this will be incomparable with the income of brokers.

The government may also introduce an additional criterion for the significance of CII objects – “Economic significance”. This criterion establishes the minimum amount of tax deductions to be included in the CII. As a result, the number of companies that will be classified as CII will grow significantly. NAUFOR emphasizes that this will lead to additional costs for brokers. The cost of organizing protection measures will exceed the values ​​of possible damage or economic efficiency of subjects.

According to Vedomosti, as a result, financial sector organizations should quickly switch to domestic information security systems and equipment. NAUFOR believes that such restrictions will have a negative impact on the entire financial market. The association asked regulators to postpone the introduction of these measures or cancel them.

Olesya Pavlenko