2022-12-29
The Commission de Surveillance du Secteur Financier (CSSF) issued Circular CSSF 22/828 to amend Circular CSSF 20/750 regarding information and communication technology and security risk management. This regulatory update modifies the existing requirements for financial sector entities to ensure robust ICT and security risk management practices. The amendment aims to align supervisory expectations with evolving technological risks and operational resilience standards.