Risk Management
Articles on Risk Management from ADVISORI
IT Compliance Checklist 2027: Every Deadline and Obligation at a Glance
Which IT compliance deadlines apply in 2027? This quarterly checklist covers all regulatory obligations — DORA, NIS2, AI Act, CRA, GDPR, and ISO 27001 — with specific action items and responsible roles for each quarter.
Boris Friedrich
April 17, 2026
Regulatory Outlook 2027: Upcoming Compliance Requirements and Deadlines
What regulatory changes should organizations prepare for in 2027? CRA full compliance, DORA advanced testing, NIS2 enforcement maturation, and emerging standards from ENISA and ESAs. This outlook covers deadlines and preparation priorities.
Boris Friedrich
April 17, 2026
CRA December 2027: Full Compliance Deadline — The 12-Month Countdown for Manufacturers
December 11, 2027 is the hard deadline for full CRA compliance. Products without conformity assessment and CE marking cannot be sold in the EU. This 12-month roadmap covers what manufacturers must complete month by month.
Boris Friedrich
April 17, 2026
IT Budget 2027: How to Prioritize Cybersecurity Investments for Maximum Impact
Budget season 2027 arrives against DORA enforcement, NIS2 penalties, rising ransomware costs, and pressure to demonstrate ROI. This guide helps CISOs prioritize cybersecurity investments by impact: identity, detection, cloud security, compliance automation, and awareness.
Boris Friedrich
April 17, 2026
Regulatory Year in Review 2026: DORA, NIS2, AI Act — What Was Implemented and What Comes Next
2026 was the year of regulatory implementation: DORA since January, NIS2 enforcement active, AI Act high-risk obligations from August, CRA reporting from September. This review assesses implementation status, lessons learned, and what organizations must prepare for in 2027.
Boris Friedrich
April 17, 2026
DPIA Guide: Data Protection Impact Assessment Under GDPR — Step by Step
A Data Protection Impact Assessment (DPIA) is mandatory for high-risk data processing under GDPR. This step-by-step guide covers when a DPIA is required, the 6-step methodology, risk evaluation, mitigating measures, and documentation requirements for regulatory compliance.
Boris Friedrich
April 17, 2026
Third-Party Risk Management: The Complete TPRM Guide for 2026
Third-party risk management (TPRM) identifies, assesses, and mitigates risks from vendors and suppliers. This guide covers the full TPRM lifecycle, risk classification, due diligence methods, continuous monitoring, DORA Articles 28–44 requirements, and practical tools for every maturity level.
Boris Friedrich
April 17, 2026
DORA ICT Risk Management: Requirements and Implementation Guide for Financial Institutions
DORA Articles 5–16 establish the ICT risk management framework that financial institutions must implement. This guide breaks down governance, framework structure, ICT systems management, detection, business continuity, and the learning loop — with a practical implementation roadmap.
Boris Friedrich
April 17, 2026
ESG Dashboard: Structure, KPIs & Tools for CSRD Sustainability Reporting
An ESG dashboard makes sustainability performance visible and auditable. This guide covers essential environmental, social, and governance KPIs, CSRD/ESRS alignment, data collection strategies, and tool selection for organizations building audit-ready ESG reporting.
Boris Friedrich
April 17, 2026
Intelligent ICS automation with RiskGeniusAI: Reduce costs, strengthen compliance, increase audit security
Transform your control processes: With RiskGeniusAI, compliance, efficiency and transparency in the ICS become measurably better.
Angelo Tarda
October 29, 2025
Strategic AI governance in the financial sector: Implementation of the BSI test criteria catalog in practice
The new BSI catalog defines test criteria for AI governance in the financial sector. Read how you can strategically implement transparency, fairness and security.
Dr. Helge Thiele
October 21, 2025
New BaFin supervisory notice on DORA: What companies should know and do now
BaFin creates clarity: New DORA instructions make the switch from BAIT/VAIT practical - less bureaucracy, more resilience.
Alex Szasz
August 26, 2025
Your strategic success starts here
Our clients trust our expertise in digital transformation, compliance, and risk management
Ready for the next step?
Schedule a strategic consultation with our experts now
30 Minutes • Non-binding • Immediately available
For optimal preparation of your strategy session:
Prefer direct contact?
Direct hotline for decision-makers
Strategic inquiries via email
Detailed Project Inquiry
For complex inquiries or if you want to provide specific information in advance