Cyber Security

CSSF Circular 20/750 implements EBA Guidelines on ICT and security risk management in Luxembourg

On 25 August 2020, the CSSF published Circular 20/750 implementing the EBA Guidelines on ICT and security risk management in Luxembourg. These guidelines establish a consistent approach to the mitigation and management of these risks in all EU countries. Are you ready for the Circular? Download our self-assessment to assess your preparedness and define a resp […]

Covid 19: Staying cyber secure

The Covid-19 pandemic is changing our lives. People are concerned, and with that concern comes a desire for information, safety and support. Organized crime groups are exploiting the fear, uncertainty and doubt which Covid-19 brings to target individuals and businesses in a variety of ways. The threat Since mid-February, KPMG member firms have seen the rapid b […]

Covid-19: the role of IT functions in facilitating social distancing and business continuity

As the Covid-19 situation develops across Europe, governments and businesses are taking steps to protect the health and safety of their people and roll out precautionary measures. On 15 March, the Luxembourg government renewed calls for remote working as a means to enact “social distancing” and reduce contact between people, therefore limiting the spread of […]

A new decade, what next for cybersecurity?

David Ferbrache, Global Head of Cyber Futures, KPMG in the UK offers 10 cybersecurity predictions for the year ahead Our world is changing, and with it, the cybersecurity challenges that we all face in securing that world. The coming of a new year is, of course, just another day in the calendar, but it’s also a chance to take stock and wonder just what the […]

Ten trends driving cyber security in 2019

David Ferbrache, chief technology officer in KPMG’s cyber security practice, has highlighted ten cyber security trends we can expect to see in 2019. Here they are: 1. Coming of cyber warfare Countries will continue to invest in attack infrastructure as they have over the past few years. The most recent US intelligence worldwide threat assessment suggests tha […]

The subtle, long-term GDPR goals—and how to meet them

With a little bit of hindsight on GDPR’s enforcement date of 25 May 2018, we can now see a real pattern: most organisations developed their compliance programs in two phases, one before and one after the “go-live”. Why is that important? Because the first phase was deadline-oriented and had clearer metrics of success, while the second phase has proven […]