
The European Supervisory Authorities (EBA, EIOPA, and ESMA) have officially released the list of 19 ICT third-party service providers now designated as "Critical" (CTPPs) under the Digital Operational Resilience Act (DORA).
Nov 18, 2025Derisk Advisory regularly shares thought leadership and insights on ICT, cybersecurity risk management, and regulatory developments to support organizations across industries in enhancing resilience and compliance.
Article 7 through 12 of 16 total articles

The European Supervisory Authorities (EBA, EIOPA, and ESMA) have officially released the list of 19 ICT third-party service providers now designated as "Critical" (CTPPs) under the Digital Operational Resilience Act (DORA).
Nov 18, 2025
As part of the Members Day of the Ordre des Experts-Comptables (OEC) Luxembourg, Derisk Advisory recently had the pleasure of presenting to an audience of Luxembourg-based accountants and fiduciaries, addressing the critical cybersecurity challenges their profession faces.
Oct 17, 2025
The Commission de Surveillance du Secteur Financier (CSSF) has published its Annual Report for 2024, offering a crucial overview of the challenges and priorities for Luxembourg's financial sector. In an environment marked by geopolitical uncertainty and rapid technological change, the report serves as an essential guide for navigating the regulatory landscape.
Aug 28, 2025
In June 2025, Derisk Advisory joined forces with DSM Avocats à la Cour to host a webinar on DORA and the practical implications of the new CSSF circulars.
Jun 3, 2025
The CSSF recently published an FAQ highlighting the most frequent issues observed in their submission and correction process. By now, financial entities should have received a confirmation stating: "We consider your submission process of your Register of information as finished. No future action is required from your side at the current stage."
Apr 28, 2025
Derisk Advisory recently had the opportunity to contribute to a Paperjam article discussing how the Digital Operational Resilience Act (DORA) is influencing regulatory expectations in Luxembourg — and what financial institutions should anticipate as the CSSF begins to sharpen its focus on enforcement.
Apr 16, 2025