- Regulatory Compliance
- Cybersecurity and Risk
- Performance Services
- Technology Solutions
The FCA has finalised guidance to clarify requirements on firms when outsourcing to the cloud and other third party IT providers, the aim is for firms to identify and manage operational risks associated with use of third parties. This newly issued guidance is in addition to general outsourcing requirements already detailed in SYSC 8 within the FCA Handbook.
We recommend that firms read the guidance paper in detail, key points include the following:
The full published guidance can be viewed on the FCA’s website here: http://www.fca.org.uk/news/fg16-5-guidance-for-firms-outsourcing-to-cloud-and-third-party-it-services
We recommend that firms take the following actions:
ACA Aponix provides risk assessments, written information security programs, staff awareness programs (phishing and training), and vendor due-diligence as part of our core service offering. Please contact firstname.lastname@example.org with any questions or for further information on how we can assist you with addressing cybersecurity risk.
Copyright © 2017 ACA Compliance Group Holdings, LLC, Adviser Compliance Associates, LLC, Broker-Dealer Compliance Associates, LLC,
ACA Performance Services, LLC, ACA Technology, LLC, ACA Risk Strategies, LLC, and ACA Technology Surveillance, Inc. All rights reserved.