Will DORA Impact The Scope Of MFSA's Guidance On (Amongst Others) ICT Risk Management And Outsourcing Arrangements?

GA
Ganado Advocates

Contributor

Ganado Advocates is a leading commercial law firm with a particular focus on the corporate, financial services and maritime/aviation sectors, predominantly servicing international clients doing business through Malta. The firm also promotes other areas such as tax, pensions, intellectual property, employment and litigation.
As the date of application of Regulation (EU) 2022/2554 (the "Regulation" or, as more commonly known, "DORA") is looming large on the horizon...
European Union Media, Telecoms, IT, Entertainment
To print this article, all you need is to be registered or login on Mondaq.com.

As the date of application of Regulation (EU) 2022/2554 (the "Regulation" or, as more commonly known, "DORA") is looming large on the horizon, the MFSA has issued a critical Circular which lays to rest the conundrum entities falling in scope of MFSA's regulatory remit have been pondering on in the space of ICT risk management and digital operational resilience more broadly.

The Circular clarifies to the industry that, with effect from DORA's date of application (17 January, 2025):

i. MFSA's cross-sectoral Guidance on Technology Arrangements, ICT and Security Risk Management, and Outsourcing Arrangements published in 2020 (the "MFSA Guidance Document") will no longer apply to MFSA Authorised Persons which fall within scope of DORA (i.e., the Authorised Persons which qualify as 'financial entities' under the Regulation); and

ii. the MFSA Guidance Document will continue to apply to MFSA Authorised Persons which do not fall in scope of DORA, such as company service providers and recognised fund administrators. An exhaustive list of such Authorised Persons is included in Annex 1 to the Circular.

The journey towards DORA readiness is a complex task which is further compounded by the regulatory technical standards and guidance documents being released under the Regulation. Ganado Advocates has a DORA-focused team of professionals who are readily available to assist with any queries relating to the application of, and requirements emanating from, the MFSA Guidance Document or DORA as may be applicable to your firm.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More