ICT Third-Party Risk Management

Comprehensive advisory services to manage your ICT third-party and cloud outsourcing risks in compliance with regulatory requirements.

Our Services

  • Ad-hoc support concerning ICT third-party risk management (e.g., DORA and Circular CSSF 25/882) and ICT and Cloud outsourcing (e.g., Circular CSSF 22/806 as amended) such as:
    • Policies, procedures, and templates
    • Criticality or importance assessments
    • Risk assessments
    • Service providers due diligence
    • ICT TPP arrangement and outsourcing notifications to financial sector regulators
    • Registers of information
    • Exit plans
    • Training to Cloud Officers
  • Interim Management with respect to ICT third-party risk management

Ready to get started?

Contact us to discuss how we can help strengthen your ICT and security risk management over third-parties.

Get in touch