Mei Ri Jing Ji Xin Wen·2025-08-10 12:52Core Viewpoint - The stability of information systems in the securities industry is essential for ensuring the safe operation of financial markets, prompting the China Securities Association to seek industry feedback on the "Stability Assurance System Standard for the Securities Industry" [1][2]. Group 1: Background and Purpose - The initiative aims to integrate best practices from securities firms to create a practical stability assurance framework, promoting the digital and standardized development of technical capabilities across the industry [1]. - The project for drafting the standard began in November 2023, with participation from 14 securities firms, including major players like GF Securities and CITIC Securities [1]. Group 2: Current Challenges - There are four main challenges identified: 1. Lack of resilience design in system development, leading to high operational risk prevention costs due to insufficient monitoring and automation capabilities [2]. 2. Predominantly reactive risk perception during operations, lacking proactive data-driven risk identification capabilities [2]. 3. Emergency response relies heavily on individual expert experience, lacking data-driven human-machine collaborative capabilities [2]. 4. Insufficient depth of intelligent technology application, resulting in a gap between abnormal response efficiency and real-time business requirements [2]. Group 3: Proposed Framework - The "Stability Assurance System Standard" proposes a "three-in-one" framework for stability assurance, focusing on organizational, institutional, and process guarantees [3]. - Organizational guarantees include defining the structure, personnel competency requirements, and management objectives [3]. - Institutional guarantees encompass regulations, technical support, operational procedures, and timelines to ensure management requirements are actionable and traceable [3]. - Process guarantees focus on ten core processes related to stability management, including monitoring, alerting, and fault management, with mechanisms for evaluation and key activities [3]. - The standard emphasizes a shift towards proactive operations management to meet non-functional requirements like resilience and maintainability, utilizing digital methods to enhance defense capabilities [3].