EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.
Recent Searches
IT Compliance and Regulatory Alignment
Regulatory requirements are constantly evolving – and companies must not only meet them but also be able to demonstrate compliance. We help organizations navigate the complex landscape of digital regulations and translate legal requirements into concrete processes, controls, and evidence.
What EY can do for you
Together, we will establish a functional governance system, reporting mechanisms, and metrics that enable you to demonstrate compliance without unnecessary administrative burden.
We support clients in meeting the requirements of key regulations:
- NIS2 – Cybersecurity and risk management
- DORA – Digital operational resilience, testing, third-party risk management
- Cyber Resilience Act, Data Act, DSA/DMA – Data protection, digital services and markets
- HITRUST, TISAX – Industry-specific frameworks for healthcare, finance, and automotive
- SWIFT CSP Assessment – service designed to help organizations meet the mandatory requirements of the SWIFT Customer Security Programme and strengthen their cybersecurity posture in relation to the SWIFT network.
We also provide:
- Verification of the accessibility of digital services according to the Accessibility Act (e.g., for public institutions or e-commerce)
- Integration of compliance requirements into existing frameworks (e.g., ISO, SOC) to minimize duplication and increase efficiency
- Assurance over AI - we offer assurance services for the evolving landscape of artificial intelligence (AI).