Frameworks

Requirements and Regulations

• GDPR: General Data Protection Regulation
• BaFin: Bundesanstalt für Finanzdienstleistungsaufsicht

  English translation: Federal Financial Supervisory Authority

• MaRisk: Mindestanforderungen an das Risikomanagement

  English translation: Minimum Requirements for Risk Management

• BAIT: Bankaufsichtliche Anforderungen an die IT

  English translation: Supervisory Requirements for IT in Financial Institutions

• ISO/IEC 27001: Information security management systems - Requirements
• ISO/IEC 24760: IT Security and Privacy - A framework for identity management
• KRITIS: Kritische Infrastrukturen

  English translation: Critical Infrastructures

• MiCA: Markets in Crypto-Assets Regulation
• DORA: Digital Operational Resilience Act

Good reads and presentations

• BAIT: Clearer Guidelines as a Basis for More Effective Implementation