Source: OJ L, 2024/1774, 25.6.2024

Current language: EN

Article 5 ICT asset management procedure

    1. Financial entities shall develop, document, and implement a procedure for the management of ICT assets.

    1. The procedure for management of ICT assets referred to in paragraph 1 shall specify the criteria to perform the criticality assessment of information assets and ICT assets supporting business functions. That assessment shall take into account:

      1. the ICT risk related to those business functions and their dependencies on the information assets or ICT assets;

      2. how the loss of confidentiality, integrity, and availability of such information assets and ICT assets would impact the business processes and activities of the financial entities.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

springlex@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod