RegTech Insight Operational Resilience & Third-Party Risk The latest content from across the platform
A-Team Group Announces Winners of RegTech Insight Awards Europe 2026
A-Team Group has announced the winners of its RegTech Insight Awards Europe 2026. The awards recognise both established providers and innovative newcomers providing RegTech solutions to capital market participants that significantly improve their ability to respond effectively to evolving and increasingly complex regulatory requirements. This year’s RegTech Insight Awards Europe included categories spanning the regulatory…
Why an AI ‘Kill Switch’ Is Harder Than It Sounds
UK MPs have tabled an amendment to the Cyber Security and Resilience Bill that would allow regulations giving the Secretary of State last-resort powers to direct the shutdown of data centres or AI systems used or deployed by a data centre during an AI security or operational emergency. The proposal has not been endorsed by…
The Future of AI in Compliance Recording
In an era of escalating regulatory pressure, financial institutions can leverage artificial intelligence (AI) and large language models (LLMs) to transform compliance from a cost burden into a strategic competitive advantage. These technologies, applied to sophisticated monitoring systems, generate structured, high-quality data at scale, converting what was once a static compliance archive into a source…
Quest Launch Bridges Identity Threat Detection and Recovery for Microsoft Operational Resilience
Quest Software has introduced a new Security Management Platform that brings together identity threat detection and response, recovery, and migration for Microsoft environments. The launch reflects a broader shift in identity security: firms are looking beyond detection alone and towards platforms that can also support resilience, recovery, and lower-risk modernization. The company is positioning the…
DTCC Expands Board with Senior Market Structure, Treasury and Operations Leaders
The Depository Trust & Clearing Corporation (DTCC) has appointed four senior financial services executives to its Board of Directors, reinforcing governance oversight across market infrastructure, risk, and post-trade operations. The new appointees – Roland Chai (Nasdaq), Massimiliano Ciardi (Citadel), Stephen Hood (Marex), and Georges Lauchard (Barclays) – bring experience spanning exchange operations, treasury and funding,…
PS26/2: The FCA Wants Data, Not Declarations on Resilience
The Financial Conduct Authority has moved the UK operational resilience regime into its next phase with PS26/2 on operational incident and third party reporting. Firms have spent the past few years identifying important business services and setting impact tolerances. Supervisors now want structured data that shows how those services hold up under stress. PS26/2 introduces…
ITDR Won’t Save You if You Can’t Recover – Quest Research
For years, financial institutions have invested heavily in identity security, building layered controls around authentication, access management and threat detection. Yet regulators are increasingly focused on resilience – specifically what happens when those controls fail? The findings from Quest Software’s recent State of ITDR 2026: prevention and recovery research point to a clear conclusion: while…
Blackwired’s ThirdWatch: Powering Operational Resilience with Cyber Intelligence
For years, financial institutions have invested heavily in cyber defences designed to protect their own perimeters. Firewalls hardened, endpoints secured, and internal monitoring intensified. But many of the most disruptive recent incidents have propagated through third-party providers, software supply chains, or shared infrastructure. They are aimed at the firms banks depend on. The exploitation of…
Recorded Webinar: Sponsored by FundGuard: NAV Resilience Under DORA, A Year of Lessons Learned
The EU’s Digital Operational Resilience Act (DORA) came into force a year ago, and is reshaping how asset managers, asset owners and fund service providers think about operational risk. While DORA’s focus is squarely on ICT resilience and third-party dependencies, its implications extend deep into core operational processes that are critical to market integrity, investor…
DORA CTPP List Published, But Who’s Missing?
When the European Supervisory Authorities (ESMA, EBA and EIOPA) published the first list of Critical ICT Third-Party Providers (CTPPs) in November 2025, the step marked a major milestone in the rollout of the Digital Operational Resilience Act (DORA). The regulators described the designations as “crucial” to implementing the Union-level oversight framework. Yet despite the significance…