In June 2025, Derisk Advisory joined forces with DSM Avocats à la Cour to host a webinar on DORA and the practical implications of the new CSSF circulars.
Derisk Advisory regularly shares thought leadership and insights on ICT, cybersecurity risk management, and regulatory developments to support organizations across industries in enhancing resilience and compliance.
In June 2025, Derisk Advisory joined forces with DSM Avocats à la Cour to host a webinar on DORA and the practical implications of the new CSSF circulars.
The CSSF recently published an FAQ highlighting the most frequent issues observed in their submission and correction process. By now, financial entities should have received a confirmation stating: “We consider your submission process of your Register of information as finished. No future action is required from your side at the current stage.”
Derisk Advisory recently had the opportunity to contribute to a Paperjam article discussing how the Digital Operational Resilience Act (DORA) is influencing regulatory expectations in Luxembourg — and what financial institutions should anticipate as the CSSF begins to sharpen its focus on enforcement.
As of today, 17 January 2025, DORA is in full force. Earlier this week, the CSSF issued a communiqué with updates on reporting obligations.
Happy New Year! The AI Act mandates businesses to take action by February 2025. This regulation is a pivotal moment, urging businesses to act promptly. The deadline of February 2, 2025, signifies a crucial milestone.
In our latest article, we dive into key findings from the Commission de Surveillance du Secteur Financier (CSSF)’s 2023 Annual Report.
In September 2024, Derisk Advisory joined forces with DSM Avocats à la Cour to host a webinar on DORA’s implications for Luxembourg financial institutions.