2025-04-09
The Commission de Surveillance du Secteur Financier issued Circular CSSF 25/881 to amend Circular CSSF 20/750 regarding information and communication technology and security risk management. This regulatory update modifies the existing requirements for financial sector entities to ensure robust ICT governance and security protocols. The amendment aims to align supervisory expectations with evolving technological risks and operational resilience standards.