Aggregated News From Investment Management Regulators

MFSA sets out its ICT & Security Risk Management Expectations – MFSA


Please complete the required fields.

The Malta Financial Services Authority (MFSA) has released principle-based cross-sectoral guidelines for public consultation, in the areas of Technology Arrangements, ICT and Security Risk Management, and Outsourcing, setting out the Authority’s expectations.

The Guidance document, titled Guidance on Technology Arrangements, ICT and Security Risk Management, and Outsourcing Arrangements, looks at technology as a mission-critical component, an innovation enabler and a major determinant for operational efficiency and highlights the importance of resilience and regulatory compliance. It draws from, and references, several sources, primarily European Supervisory Authorities’ (ESA) Guidelines, International Standards and established Frameworks applicable to the use and application of technology arrangements within the financial services industry.

“The MFSA’s Guidance document is in line with the evolving direction provided by the ESAs and international best practices in this field. The MFSA’s objective is to ensure that all licensed entities place ICT & Cybersecurity risk at the top of their strategic agenda in order to address inherent technology risks and ensure a safe environment across the financial services sector,” commented the MFSA’s Chief of Supervision, Christopher Buttigieg.

Public consultation is open until Friday 28 August 2020 and interested parties are invited to send their feedback , ask questions and/or make any suggestions concerning the Guidelines, as applicable, to [email protected].

Regulator Information

Abbreviation: MFSA
Jurisdiction: Malta

Recent Articles

Statement Regarding In the Matter of DF Growth REIT II, LLC

This matter involves a settlement with DF Growth REIT II, LLC (the “Trust”) relating to the Trust’s purported reliance on the Regulation A exemption from registration under the Securities Act of 1933

Consultation on AML/CFT Obligations upon VASPS and Additional Obligations upon Licensed Trustees and Partners — GFSC

Today a consultation paper has been issued on the proposed additional rules and guidance for virtual asset service providers (“VASPs”) and specified businesses with a connection to, or involvement wi

Notice of Ministerial Approval of Rules and Consequential Amendments related to SEDAR+

Use this form to submit website feedback and suggestions, or to inform us about website issues.

Volume 46, Issue 23

Use this form to submit website feedback and suggestions, or to inform us about website issues.

Get the latest from Regulatory.News in your inbox!