This training aims to provide an introduction to the main IT regulatory requirements applicable to CSSF supervised entities with a specific focus on the topics of ICT and security risk management (CSSF 20/750), IT outsourcing and cloud computing (CSSF 22/806), fraud and incident reporting (CSSF 11/504) and teleworking requirements (CSSF 21/769). This presentation will be supported by good market practices and practical examples. The goal is to increase your comfort level when confronted with IT specific regulations and to strengthen your company’s oversight and IT risk management capabilities. This training course is designed as an essential step to assist you to address the following challenges, among others:
By the end of this training, the participants will be able to:
IT regulatory landscape in Luxembourg
ICT and security risk management as per CSSF 20/750
IT outsourcing and cloud computing as per CSSF 22/806
Fraud and incident management as defined by CSSF 11/504Teleworking requirements (CSSF 21/769)
Certificate of attendance
This course is coordinated by Cecile Liegeois, Parner at PwC Luxembourg.
Cécile has 22 years of professional experience in Luxembourg and developed deep knowledge of Luxembourg banking and investment firms regulations, amongst other topics, internal governance, outsourcing arrangements (BPO/ICT/Cloud) and operational/ICT risk management. She is leading projects of new regulations implementation focusing on business, regulatory and operational impacts. Cécile has experience in the external audit (financial and regulatory audit) of entities of the financial sector, mainly in the banking industry, other professionals of the financial sector (investment firms, support and specialised PFS), management companies and investment funds.