guidance

Information Technology Risk Management Guidance 20241120

Issuing bodyADGM
CountryUAE
Date issued2024
IT Risk ManagementGovernanceThird-Party Risk

This ADGM guidance outlines principles for effective Information Technology Risk Management. It provides a framework for establishing a strong IT control environment, covering governance, risk management, third-party oversight, compliance, and system lifecycle management. The guidance aims to help organizations manage IT risks and ensure alignment with business objectives.

Key requirements
  • Establish and maintain a risk assessment framework for identifying and evaluating IT risks.
  • Implement a robust incident management process for detecting, responding to, and recovering from IT incidents.
  • Develop and implement a third-party risk management program to oversee IT service providers.
  • Ensure compliance with relevant regulations and conduct regular IT audits.
Applies to: Entities operating within the ADGM jurisdiction
View original document ↗Ask GCC LexAI about this →
More from ADGM
ADGM Courts Form Fees Reference Table - Effective 8 February 2025ADGM Courts Guidelines for self-represented litigants %28Arabic%29ADGM Courts Guidelines for self-represented litigants %28English%29ADGM Data Protection Regulations (Substantial Public Interest) Rules 2025ADGM Office of Data Protection — Circular No. 1 of 2025ADGM RA Service of Alcohol Guidance
AI-generated summaries only. Arabic originals are legally binding. This is not legal advice. · ← All documents