The ESAs approached market participants with a discussion paper at the end of May 2023 to consider their input in advice to be submitted to the EU Commission by September 30, 2023. Addressed are critical ICT third-party service providers, specifically the criteria for their identification as well as the supervisory fees they are required to pay.
The April update focuses on three new pieces of EU legislation, the FSB’s Cyber Incident Reporting, and the timeline on RTS/ITS under DORA
The December update focuses on the recently released DORA, as well as cloud outsourcing and corporate due diligence obligations in supply chains.
The 7th MaRisk amendment is already awaiting us in the fourth quarter. Stay Up-To-Date with our January 2022 Regulatory ITSM Update!