Skip to main content

TIBER-LU framework

Enhancing cyber resilience of the Luxembourgish financial ecosystem

Context

 

In an evolving cyberthreat landscape, the financial services industry is one of the most targeted. Regulators and consumers alike expect financial institutions to adequately safeguard their critical assets and data. To meet these expectations, financial institutions must increasingly comply with various cybersecurity regulations and accordingly implement security standards and guidelines.

In particular, the Digital Operational Resilience Act (DORA), which will enter into force soon, will require financial institutions to regularly perform Threat-Led Penetration Tests in accordance with the TIBER-EU framework.

However, some organizations may be hesitant or unequipped to assess the effectiveness of their defenses and security measures against sophisticated and real-world cyberattacks.

Recommendations