RESPOND & RECOVER
eDiscovery services
Forensic-/Incident Readiness Assessment
Forensic-/Incident response
Data breach investigation / remediation
Incident management & 24/7 On-call support
TEST & MONITOR
Security testing and Red teaming
Performing ethical hacking on your IT-systems.
Security Incident & Event Monitoring (SIEM)
Helping you built monitoring use cases and implementing SIEM tooling.
Security Operating Centre services (SOC)
Monitoring your IT infrastructure for Cyber threats
CONSULT & IMPLEMENT
Support for certification
Helping you obtaining and maintaining your security and privacy certifications.
Integrated IT Risk Control Framework support
Third Party Risk Management support
Information Security Officer (CISO support)
Awareness & Education
Cyber incident response simulation (for management)
CONSULT & IMPLEMENT
Support for certification
Helping you obtaining and maintaining your security and privacy certifications.
Integrated IT Risk Control Framework support
Third Party Risk Management support
Information Security Officer (CISO support)
Awareness & Education
Cyber incident response simulation (for management)
AUDIT & ASSURANCE
(IT) Security & Privacy Assessments & Audits
Helping you with Risk assessments and audits against common frameworks.
Assurance
Providing assurance services and reporting.
Third party Risk Assessments & audits
Performing audits and assessments on site at your vendors.
Index
Anti-Money Laundering (AML) and sanctions
Behaviour & Culture
CFO Services
Compliance
Cyber security
ESG Risk Management
Forensics & Technology
Internal Audit
IT Services
Third Party Risk Management
Data Management
Cyber security
Cyber security is a key priority for financial institutions within the Financial Sector. No cyber incident is entirely preventable and no financial institution can be ruled out as a possible target. Rapid ongoing digitalisation and the professionalisation of cyber criminals makes financial institutions even more vulnerable. Furthermore, financial regulators are demanding evermore insight and prove of the measures taken to protect important data in accordance with the relevant practices.
Services offered by BDO
Apart from their immediate repercussions, such as financial losses and production outages, cyber incidents often also cause indirect harm, including loss of reputation and damage to customer relations. The important questions are: “How resilient would your organisation be in the event of a cyberattack? Do you have the capacity to spot an attack quickly and limit its impact?”
Cyber security is also important for compliance requirements such as GDPR, Dora, NIS2 and MiFID II and various specific guidelines from local banking regulators. Effective physical and digital data security is a crucial part of your duty to meet your compliance obligations, safeguard your reputation and protect sensitive
(client) information.
Insight into your Cyber security
BDO will help you gain an understanding of the degree to which your organisation can withstand cyber incidents, for instance by analysing your existing vulnerabilities and risks or carrying out ethical hacking tests or a TIBER test. We will show you which cyber threats are relevant to you. This involves working with you to establish your organisation’s risk profile so that you will know where you are currently most
vulnerable. Based on the risk profile we will work together with your people to determine what measures can be taken to lower your specific risks to an acceptable level based on your risk tolerance and risk bearing capacity. We will always go for the most pragmatic solution that ties in best with your organisation.
And, if necessary, we can help you to implement these measures as well.
During a risk assessment, we will check how ‘mature’ your organisation is in terms of managing cyber risks. That means checking, for example, if cyber risk is on management’s agenda, sufficient technical and organisational measures have been taken and if you can recover quickly after an incident. We will also look into risks that can emerge from your third party partners and if your employees understand how their behaviour can affect possible cyber risks.
We can provide you a full service starting with assessment and assurance services, continuing into implementation support, providing security testing and monitoring services and if necessary also response and recover services on actual (cyber) security incidents.
More information
Kees Plas
Partner Cyber Security
T +31 (0)30 633 62 30
Maurice Koetsier
Senior Manager IT Risk Assurance, BDO Digital
E maurice.koetsier@bdo.nl
T +31(0)30 284 98 00
CONSULT & IMPLEMENT
Support for certification
Helping you obtaining and maintaining your security and privacy certifications.
Integrated IT Risk Control Framework support
Third Party Risk Management support
Information Security Officer (CISO support)
Awareness & Education
Cyber incident response simulation (for management)
AUDIT & ASSURANCE
(IT) Security & Privacy Assessments & Audits
Helping you with Risk assessments and audits against common frameworks.
Assurance
Providing assurance services and reporting.
Third party Risk Assessments & audits
Performing audits and assessments on site at your vendors.
TEST & MONITOR
Security testing and Red teaming
Performing ethical hacking on your IT-systems.
Security Incident & Event Monitoring (SIEM)
Helping you built monitoring use cases and implementing SIEM tooling.
Security Operating Centre services (SOC)
Monitoring your IT infrastructure for Cyber threats
RESPOND & RECOVER
eDiscovery services
Forensic-/Incident Readiness Assessment
Forensic-/Incident response
Data breach investigation / remediation
Incident management & 24/7 On-call support
Index
Anti-Money Laundering (AML) and sanctions
Behaviour & Culture
CFO Services
Compliance
Cyber security
ESG Risk Management
Forensics & Technology
Internal Audit
IT Services
Third Party Risk Management
Data Management
Kees Plas
Partner Cyber Security
T +31 (0)30 633 62 30
Maurice Koetsier
Senior Manager IT Risk Assurance, BDO Digital
E maurice.koetsier@bdo.nl
T +31(0)30 284 98 00
More information
Insight into your Cyber security
BDO will help you gain an understanding of the degree to which your organisation can withstand cyber incidents, for instance by analysing your existing vulnerabilities and risks or carrying out ethical hacking tests or a TIBER test. We will show you which cyber threats are relevant to you. This involves working with you to establish your organisation’s risk profile so that you will know where you are currently most
vulnerable. Based on the risk profile we will work together with your people to determine what measures can be taken to lower your specific risks to an acceptable level based on your risk tolerance and risk bearing capacity. We will always go for the most pragmatic solution that ties in best with your organisation.
And, if necessary, we can help you to implement these measures as well.
During a risk assessment, we will check how ‘mature’ your organisation is in terms of managing cyber risks. That means checking, for example, if cyber risk is on management’s agenda, sufficient technical and organisational measures have been taken and if you can recover quickly after an incident. We will also look into risks that can emerge from your third party partners and if your employees understand how their behaviour can affect possible cyber risks.
We can provide you a full service starting with assessment and assurance services, continuing into implementation support, providing security testing and monitoring services and if necessary also response and recover services on actual (cyber) security incidents.
Apart from their immediate repercussions, such as financial losses and production outages, cyber incidents often also cause indirect harm, including loss of reputation and damage to customer relations. The important questions are: “How resilient would your organisation be in the event of a cyberattack? Do you have the capacity to spot an attack quickly and limit its impact?”
Cyber security is also important for compliance requirements such as GDPR, Dora, NIS2 and MiFID II and various specific guidelines from local banking regulators. Effective physical and digital data security is a crucial part of your duty to meet your compliance obligations, safeguard your reputation and protect sensitive
(client) information.
Cyber security is a key priority for financial institutions within the Financial Sector. No cyber incident is entirely preventable and no financial institution can be ruled out as a possible target. Rapid ongoing digitalisation and the professionalisation of cyber criminals makes financial institutions even more vulnerable. Furthermore, financial regulators are demanding evermore insight and prove of the measures taken to protect important data in accordance with the relevant practices.
Cyber security