Search Results for “Operational risk” – Page 2

In accordance with Annex 2 to Circular CSSF 24/850. This table is a supplement to the summary report on the controls carried out by the internal audit during the previous financial year (RD-5).

PDF (119.4Kb)

Technical document

Updated on 16.05.2024 - Published on 19.01.2024

Table of recommendations of the “réviseur d’entreprises agréés” (approved statutory auditor) (Reference CL-11)

As detailed in point 4.2. of Circular CSSF 24/850

PDF (115.82Kb)

CSSF guidance

Published on 19.01.2024

Rotation plan

PDF (120.95Kb)

PDF (152.15Kb)

CSSF circular

Published on 19.01.2024

Circular CSSF 24/850

Practical rules concerning the descriptive report and the self-assessment questionnaire to be submitted on an annual basis by support PFS.

Engagement of the réviseurs d’entreprises agréés (approved statutory auditors) of support PFS and practical rules concerning the management letter and the separate report to be drawn up on an annual basis.

PDF (287.59Kb)

PDF (290.59Kb)

Communiqué

Published on 05.01.2024

Communiqué regarding ICT-related incident reporting

New reporting requirements and procedure

Page

Communiqué

Published on 01.07.2022

Communiqué related to the notification template for outsourcing a critical or important business process (BPO)

Page

CSSF FAQ

Published on 05.01.2024

CSSF FAQ related to Circular CSSF 24/847 on ICT-related incident reporting framework

PDF (341.29Kb)

PDF (331.47Kb)

CSSF circular

Published on 05.01.2024

Circular CSSF 24/847

on ICT-related incident reporting framework

PDF (300.89Kb)

PDF (213.33Kb)

CSSF regulation

Published on 05.01.2024

CSSF Regulation No 24-01 of 5 January 2024

relating to the notification of incidents according to the Law of 28 May 2019 transposing Directive (EU) 2016/1148 of the European Parliament and of the Council of 6 July 2016 concerning measures for a high common level of security of network and information systems across the European Union.

Lien

PDF (49.76Kb)

Communiqué

Published on 17.02.2023

Publication of a new notification template for critical or important ICT outsourcing

Page

Form

Published on 17.02.2023

Notification of critical or important ICT outsourcing

Version 2

DOCX (147.24Kb)

Form

Published on 01.07.2022

Notification template for outsourcing a critical or important business process (BPO)

DOCX (169.68Kb)

CSSF FAQ

Published on 22.04.2022

CSSF FAQ – Circular CSSF 22/806 on outsourcing arrangements

Version 1

PDF (177.54Kb)

CSSF circular

Published on 22.04.2022

Circular CSSF 22/806

on outsourcing arrangements

PDF (661.79Kb)

CSSF circular

Published on 22.04.2022

Circular CSSF 22/805

Revised EBA Guidelines on outsourcing arrangements (EBA/GL/2019/02) – Publication of Circular CSSF 22/806 on outsourcing arrangements – Repeal or amendments of certain circulars CSSF

PDF (165.17Kb)

Name	Description	Duration
cssf_cookies	Saves information regarding the user's consent to the use of cookies for each optional category.	1 year
ROUTEID	Technical cookie allowing load distribution.	Deleted when the browsing session ends
TBMCookie*	Security: This cookies protects the website against automated attacks.	Deleted when the browsing session ends
__utmvc	These first party cookies are set by a third party service to filter out malicious requests.	Deleted when the browsing session ends
__utmvm*	These first party cookies are set by a third party service to filter out malicious requests.	15 minutes

Name	Description	Duration
cssf_profile	This cookie adapts the website pages to the profile chosen by the visitor (professionals, markets, consumers).	1 year
pll_language	This cookie saves the user’s language choice.	1 year

Name	Description	Duration
_pk_id.#	Collects anonymous statistical data on the website consultations, such as the number of visits or the average time spent on the website. The data is processed in-house and is not shared with a third party.	1 year
_pk_ses.#	Collects anonymous statistical data for the tracking of the pages consulted during the browsing session. The data is processed in-house and is not shared with a third party.	30 minutes

Search Results for Operational risk

Advanced filters

41 Result(s)

Self-Assessment Questionnaire for support PFS de support authorised under Articles 29-3, 29-5 or 29-6 of the LFS and categorised as “Low risk”

Publication of Circular CSSF 24/850 defining the documents to be submitted annually by support PFS and their réviseurs d’entreprises agréés (approved statutory auditors)

Worldwide major outage due to CrowdStrike Agent and handling of potential impacts on undertakings for collective investment

Summary table of information systems for external use (Reference RD-16)

Summary table of information systems for internal use (Reference RD-11)

Table of recommendations of the internal audit (Reference RD-5.1)

Table of recommendations of the “réviseur d’entreprises agréés” (approved statutory auditor) (Reference CL-11)

Rotation plan

Circular CSSF 24/850

Communiqué regarding ICT-related incident reporting

Communiqué related to the notification template for outsourcing a critical or important business process (BPO)

CSSF FAQ related to Circular CSSF 24/847 on ICT-related incident reporting framework

Circular CSSF 24/847

CSSF Regulation No 24-01 of 5 January 2024

Publication of a new notification template for critical or important ICT outsourcing

Notification of critical or important ICT outsourcing

Notification template for outsourcing a critical or important business process (BPO)

CSSF FAQ – Circular CSSF 22/806 on outsourcing arrangements

Circular CSSF 22/806

Circular CSSF 22/805