Search Results for “Cybersecurity” – Page 3

Engagement of the réviseurs d’entreprises agréés (approved statutory auditors) of support PFS and practical rules concerning the management letter and the separate report to be drawn up on an annual basis.

PDF (287.59Kb)

PDF (290.59Kb)

Communiqué

Published on 19.01.2024

Publication of Circular CSSF 24/850 defining the documents to be submitted annually by support PFS and their réviseurs d’entreprises agréés (approved statutory auditors)

Page

Communiqué

Published on 05.01.2024

Communiqué regarding ICT-related incident reporting

New reporting requirements and procedure

Page

CSSF FAQ

Published on 05.01.2024

CSSF FAQ related to Circular CSSF 24/847 on ICT-related incident reporting framework

PDF (341.29Kb)

PDF (331.47Kb)

CSSF circular

Published on 05.01.2024

Circular CSSF 24/847

on ICT-related incident reporting framework

PDF (300.89Kb)

PDF (213.33Kb)

CSSF regulation

Published on 05.01.2024

CSSF Regulation No 24-01 of 5 January 2024

relating to the notification of incidents according to the Law of 28 May 2019 transposing Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the European Union.

Lien

PDF (49.76Kb)

Law

Published on 31.05.2019

Law of 28 May 2019

Law of 28 May 2019 transposing Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the European Union and amending

1° the Law of 20 April 2009 establishing a Government IT Centre, as amended; and
2° the Law of 23 July 2016 establishing a High Commission for National Protection.

Lien

PDF (198.07Kb)

EU regulation

Published on 31.01.2018

Commission Implementing Regulation (EU) 2018/151 of 30 January 2018

laying down rules for application of Directive (EU) 2016/1148 of the European Parliament and of the Council as regards further specification of the elements to be taken into account by digital service providers for managing the risks posed to the security of network and information systems and of the parameters for determining whether an incident has a substantial impact

Lien

Link

Communiqué

Published on 04.09.2023

Spear phishing spoofing the CSSF identity

Page

Communiqué

Published on 24.08.2023

Unauthenticated remote code execution vulnerability in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway)

CVE-2023-3519

Page

CSSF circular

Published on 29.12.2022

Circular CSSF 22/828

Amendment of Circular CSSF 20/750 on requirements regarding information and communication (ICT) and security risk management

PDF (112.73Kb)

PDF (115.03Kb)

Name	Description	Duration
cssf_cookies	Saves information regarding the user's consent to the use of cookies for each optional category.	1 year
ROUTEID	Technical cookie allowing load distribution.	Deleted when the browsing session ends
TBMCookie*	Security: This cookies protects the website against automated attacks.	Deleted when the browsing session ends
__utmvc	These first party cookies are set by a third party service to filter out malicious requests.	Deleted when the browsing session ends
__utmvm*	These first party cookies are set by a third party service to filter out malicious requests.	15 minutes

Name	Description	Duration
cssf_profile	This cookie adapts the website pages to the profile chosen by the visitor (professionals, markets, consumers).	1 year
pll_language	This cookie saves the user’s language choice.	1 year

Name	Description	Duration
_pk_id.#	Collects anonymous statistical data on the website consultations, such as the number of visits or the average time spent on the website. The data is processed in-house and is not shared with a third party.	1 year
_pk_ses.#	Collects anonymous statistical data for the tracking of the pages consulted during the browsing session. The data is processed in-house and is not shared with a third party.	30 minutes

Search Results for Cybersecurity

Advanced filters

79 Result(s)

Separate Report for support PFS de support authorised under Articles 29-1 or 29-2 of the LFS and categorised as “Low risk”, “Medium risk” or “High risk”

Separate Report for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “High risk”

Separate Report for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “Medium risk”

Separate Report for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “Low risk”

Self-Assessment Questionnaire for support PFS de support authorised under Articles 29-1 or 29-2 of the LFS and categorised as “Low risk”, “Medium risk” or “High risk”

Self-Assessment Questionnaire for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “High risk”

Self-Assessment Questionnaire for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “Medium risk”

Self-Assessment Questionnaire for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “Low risk”

Rotation plan

Circular CSSF 24/850

Publication of Circular CSSF 24/850 defining the documents to be submitted annually by support PFS and their réviseurs d’entreprises agréés (approved statutory auditors)

Communiqué regarding ICT-related incident reporting

CSSF FAQ related to Circular CSSF 24/847 on ICT-related incident reporting framework

Circular CSSF 24/847

CSSF Regulation No 24-01 of 5 January 2024

Law of 28 May 2019

Commission Implementing Regulation (EU) 2018/151 of 30 January 2018

Spear phishing spoofing the CSSF identity

Unauthenticated remote code execution vulnerability in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway)

Circular CSSF 22/828