Découvrez notre programme de formation certifiante pour les Cloud Officers & Outsourcing Officers. Maîtrisez les rôles, responsabilités et aspects de la conformité avec la Circulaire CSSF 22/806. Apprenez les modèles de services cloud, la gestion des risques et la sécurité dans le cloud computing.
At the end of the course, the participants must be able to:
Understand the role and responsibilities of the cloud officer / outsourcing officer
Have an overview of the applicable circulars including CSSF Circular 22/806 and the domains covered in this circular. It will enable them to make their choices including gap analysis and remediation actions for conformity with this circular.
Understand and demonstrate different service and delivery models of cloud computing
Understand and demonstrate the risk management for outsourcing arrangements (ICT, cloud, and business process outsourcing)
Understand and demonstrate security aspects and principles of cloud computing
Practically manage the outsourcing operations
Role and responsibilities
Compliance considerations (Circular 22/806 CSSF included)
CSSF 21/769 (22/804)
Circular 22/806 domains
General principles (including sustainability (ESG))
Assessments of outsourcing arrangements
Requirements in the context of ICT outsourcing arrangements
Cybersecurity, policies, processes, and Risk Management
Governance and strategy
Basics of Risk Management
Risk management of the outsourcing arrangements (ICT, cloud and business process outsourcing)
Policy and processes
Identity and Access management
Examples of cloud security solutions
Business continuity management
Outsourcing and Technologies: Cloud Solution Providers (AWS & AZURE) and other outsourcing use case
Introduction to different service and delivery models of cloud computing.
Introduction to the cloud solution providers
Cloud solution providers
How principles apply (Security options, data encryption…)?
Cascade outsourcing: Organisational and Compliance Aspects
Other outsourcing use cases: SOC, Hosting, Development, …
Compliance practical implications (Circular 22/806 CSSF included)
CSSF notification step by step
Alignment of the governance with the circular
Management body responsibility
Upgrade of existing outsourced functions
Critical or important functions (CIF)
Exit strategy and Business Continuity management
Service provider monitoring process – Outsourcing monitoring framework.
Stakeholders (Information and communication technology (ICT) and Risk Management), e.g., (C)ISO, Risk Officer, Cloud Officer, Outsourcing Officer, Business Continuity Manager, Compliance Officer, Project Managers, Program Managers, Change Managers etc. in:
Credit institutions (LFS)
Investment firms (LFS)
Payment institutions (LPS)
Other Professionals of Financial Sector (PFS)
IFMs (Investment fund managers)
The training will be delivered in French with English training material. The exam will be in English
Support de cours
Le support de cours sera délivré en début du cours.
The knowledge acquired in the seminar will be validated through an examination. The examination will be held in English and is based on a MCQ questionnaire of around 30 questions. The required passing rate is 60%.
At the end of the training, a certificate of attendance will be available either on your client account or on demand to the customer service.
Candidates who successfully complete the examination will receive the following certificate of completion co-signed by the ABBL: "Certified Cloud Officer & Outsourcing Officer"