Thu, Jun 25, 2020
On November 28, 2019, the European Banking Authority (“EBA”) published final Guidelines on information and communication technology (“ICT”) and security risk management for credit institutions, Capital Requirements Regulation investment firms and payment service providers (“PSPs”). The Guidelines establish requirements for the mitigation and management of ICT and security risks and applied from June 30, 2020. The FCA has notified the EBA that it intends to comply with the Guidelines, therefore all credit institutions, investment firms and PSPs will be expected to make every effort to comply with the Guidelines. Given the impact of the global pandemic, COVID-19, the EBA has issued further guidance on the use of flexibility in relation to the implementation of the Guidelines. Consistent with this further guidance, the FCA will apply reasonable supervisory flexibility when assessing the implementation of the Guidelines given the ongoing COVID-19 crisis
For further information, please click here.
End-to-end governance, advisory and monitorship solutions to detect, mitigate, drive efficiencies and remediate operational, legal, compliance and regulatory risk.
With expertise in diverse regulatory frameworks, including the FCA, the SEC, AMF, SFC, MAS and more, Kroll offers practical support, from initial authorization to ongoing compliance support.
Kroll's expert compliance consulting team provides regulatory registration and licensing services taking the burden of regulatory requirements off business operators.