Thu, Jun 25, 2020

EBA Guidelines of ICT and Security Risk Management

On November 28, 2019, the European Banking Authority (“EBA”) published final Guidelines on information and communication technology (“ICT”) and security risk management for credit institutions, Capital Requirements Regulation investment firms and payment service providers (“PSPs”).  The Guidelines establish requirements for the mitigation and management of ICT and security risks and applied from June 30, 2020. The FCA has notified the EBA that it intends to comply with the Guidelines, therefore all credit institutions, investment firms and PSPs will  be expected to make every effort to comply with the Guidelines.  Given the impact of the global pandemic, COVID-19, the EBA has issued further guidance on the use of flexibility in relation to the implementation of the Guidelines.  Consistent with this further guidance, the FCA will apply reasonable supervisory flexibility when assessing the implementation of the Guidelines given the ongoing COVID-19 crisis

For further information, please click here



Financial Services Compliance and Regulation

End-to-end governance, advisory and monitorship solutions to detect, mitigate, drive efficiencies and remediate operational, legal, compliance and regulatory risk.

Retained Compliance Support and Managed Services

With expertise in diverse regulatory frameworks, including the FCA, the SEC, AMF, SFC, MAS and more, Kroll offers practical support, from initial authorization to ongoing compliance support.

Global Regulatory Licensing Services

Kroll's expert compliance consulting team provides regulatory registration and licensing services taking the burden of regulatory requirements off business operators.