This is the EBA's version of Cyber security requirements.  They go beyond protecting against just cyber attacks but also cover the risks arising from IT failures.  

Many financial organisations rely on third party technology suppliers to provide their technical solutions, in some cases on an outsourcing basis.  

These rules should therefore be read in conjunction with the EBA Outsourcing Guidelines, accessible here: