INFORMATION SECURITY

IN THE FINANCIAL SYSTEM

One of the central objectives of BaFin’s regulatory requirements is to ensure effective risk management. Satisfying the increasing number of requirements means more personnel expenditure and organizational and technological effort.

The 3 lines-of-defense model has established itself as a means to identify and manage risks. We specialize in consulting and support services relating to the 1st and 2nd Lines of Defense.

Based on “Guidance on the 8th EU Company Law Directive”, FERMA / ECIIA (2010), extended by usd AG

BAFIN REQUIREMENTS

The topic of IT is a key focus in supervisory special audits. The aim of this approach is to increase IT security in the market and raise the IT risk awareness among the companies affected.

The requirements contain an adaptive and practice-oriented framework for the technical and organizational design of IT. With a focus on the management of IT resources and on IT risk management, they entail not inconsiderable adjustments to the internal organizational structure.


BAIT

Supervisory Requirements for IT in Financial Institutions



KAIT

Supervisory Requirements for IT in German Asset Managers



ZAIT

Supervisory Requirements for IT in Payment and E-Money Institutions



VAIT

Supervisory Requirements for IT in Insurance Undertakings


PROJECT SUPPORT

The impact a new project will have on information security must be considered as early as possible.

Ensuring information security while selecting, prioritizing and planning projects

Project management with a special focus on information security

Working on concrete work packages that are part of the project

ANY QUESTIONS?

Dr. Christian Schwartz, our expert for information security in the banking and finance sector, will be happy to assist.