CORIE (or Cyber Operational Resilience Intelligence-led Exercises) is a regulatory framework introduced by the Australian Council of Financial Regulators to improve cyber security resiliency in the Australian financial system. The goal of the CORIE program is to test and strengthen the cyber resilience of financial institutions against known threat actors and in so doing safeguard Australian financial markets.
Cyber risk is repeatedly classified as one of the top risks to the Australian financial system and is acknowledged as a key risk by the Council of Financial Regulators. The CORIE guidelines take international best practice, including the CBEST and TIBER frameworks, and applies an Australian context to ensure the guidelines are relevant and impactful.
Additionally, by focusing on being intelligence-led, these guidelines ensure that they can incorporate current events, industry-specific threat activity, and up to date threat intelligence to simulate realistic real-world attacks.