FSRA Raises the Bar: What You Need to Know About the New Cyber Security Requirements

Cyber threats are evolving rapidly, and regulators are stepping up to ensure financial institutions are prepared. On July 29, 2025, the Financial Services Regulatory Authority (FSRA) of Abu Dhabi Global Market (ADGM) announced enhanced cyber security requirements for firms operating in the region. These updates mark a significant shift in how cyber risk must be managed, and the deadline to comply is fast approaching.

Why This Matters

The FSRA’s new rules reflect a growing recognition that cyber security is not just an IT issue – it’s a business-critical risk. With increasing reliance on digital infrastructure and third-party providers, firms must demonstrate robust governance and proactive risk management.

What’s Changing?

Here are the key updates:

Cyber Risk Management Framework (CRMF)

Firms must implement a formally documented CRMF, approved by their Governing Body.
It must include:
- Defined roles and responsibilities.
- ICT protection and incident response plans.
- Annual reviews and updates.

Third-Party Risk Oversight

Firms must assess and monitor cyber risks from third-party ICT providers.
Contracts must include obligations for incident reporting and cooperation.

Senior-Level Oversight

Governing Bodies must ensure cyber risks are identified and managed.
Qualified individuals must be appointed to oversee cyber risk.

Cyber Risk Assessments & ICT Asset Management

Firms must assess asset criticality and data access risks.
Controls must be tested and updated annually.

Compliance Deadline: January 31, 2026

Firms have until the end of January 2026 to align with the new requirements. That may seem like plenty of time, but building a compliant framework takes planning, resources, and expertise.

How Resolution IT Can Help

We specialise in helping firms build resilient, compliant cyber security frameworks. Our services include:

Cyber risk assessments
CRMF development and documentation
Third-party risk management support
Executive training and governance alignment

Whether you’re starting from scratch or refining existing processes, we’re here to guide you every step of the way.

The FSRA’s new requirements are a wake-up call for firms to take cyber security seriously at every level. By acting now, you can not only meet regulatory expectations but also strengthen your organisation’s resilience against future threats.

Get in touch to learn how we can support your compliance journey

Learn more about our Cyber Security for Abu Dhabi

Lucas is a Business Development Manager who’s all about building relationships and finding smart ways to help clients grow. With a degree in Economics and five years of experience in sales, he takes a practical, people-first approach to business development.

He originally trained as a financial advisor, but made the switch to tech a few years ago. That background in financial services gives him a solid edge when it comes to understanding the needs of clients in the finance world, which is a big part of why he’s such a strong fit for our team.

Before joining our Dubai office in 2025, Lucas worked at a company providing SIM, eSIM, and IoT tech, covering both hardware and software solutions.

What he enjoys most about his role is getting to know clients, tackling their challenges alongside them, and building new connections that last.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

New Cyber Security Requirements for Abu Dhabi

FSRA Raises the Bar: What You Need to Know About the New Cyber Security Requirements

Why This Matters

What’s Changing?

Cyber Risk Management Framework (CRMF)

Third-Party Risk Oversight

Senior-Level Oversight

Cyber Risk Assessments & ICT Asset Management

Compliance Deadline: January 31, 2026

How Resolution IT Can Help

Get in touch to learn how we can support your compliance journey

Learn more about our Cyber Security for Abu Dhabi

You may also like...

How to Build a Culture of Cyber Security

Career opportunities

Ready to begin a partnership with us?

Services

Company

Locations

New Cyber Security Requirements for Abu Dhabi

FSRA Raises the Bar: What You Need to Know About the New Cyber Security Requirements

Why This Matters

What’s Changing?

Cyber Risk Management Framework (CRMF)

Third-Party Risk Oversight

Senior-Level Oversight

Cyber Risk Assessments & ICT Asset Management

Compliance Deadline: January 31, 2026

How Resolution IT Can Help

Get in touch to learn how we can support your compliance journey

Learn more about our Cyber Security for Abu Dhabi

You may also like...

How to Build a Culture of Cyber Security

Career opportunities

Ready to begin a partnership with us?

Services

Company

Locations

Contact Form

We'd love to hear from you