Press release
Deliberate market focus drives solid growth
Deliberate market focus drives solid growth for Grant Thornton
Services
Through Grant Thornton Financial Advisory Services we support the ambitions of dynamic businesses and help them grow
-
Transactional advisory services
Find out more about the transactional advisory services of Grant Thornton Financial Advisory Services
-
Valuations
Find out more about the valuations services of Grant Thornton Financial Advisory Services
-
Mergers and acquisitions
Find out more about the merger and acquisition services of Grant Thornton Financial Advisory Services
-
Forensic and investigation services
Find out more about the forensic and investigation services of Grant Thornton Financial Advisory Services
-
Recovery & reorganisation
Find out more about the Recovery & reorganisation services of Grant Thornton Financial Advisory Services
-
Business risk services
Find out more about the business risk services of Grant Thornton Financial Advisory Services
-
Business consulting
Find out more about the business consulting services of Grant Thornton Financial Advisory Services
-
Capital market
Capital market
We assist businesses in developing tax-planning strategies to optimise the tax burden in compliance with the regulation in force
-
Corporate and business tax
Find out more about our corporate and business tax services.
-
Direct international tax
Find out more about our direct international tax services.
-
Global mobility services
Find out more about our global mobility services.
-
Indirect international tax
Find out more about our indirect international tax services.
-
Transfer pricing
Find out more about our transfer pricing services.
-
Litigation
Our lawyers and accountants can manage all defense measures provided not only by the Italian law, but also by EU regulations and conventions
-
Family business
Find out more about our Family business services.
-
Legal
The client can be assisted in every need and with the same care both on important operations or disputes and on simple matters
Related insights:
Through Grant Thornton Operations we help businesses focus on their core business and improve efficiency
-
Back office outsourcing
Find out more about our Back office outsourcing services
-
Business process outsourcing
Find out more about our business process outsourcing services.
-
Compilation of financial statements
Find out more about our compilation of financial statements services.
-
Tax compliance
Find out more about our tax compliance services.
-
Electronic invoicing
Find out more about our electronic invoicing services
-
Electronic storage
Electronic storage is an archiving procedure that guarantees the legal validity of a digitally stored electronic document
-
Revaluation of corporate assets
Find out your civil and fiscal revaluation of tangible, intangible and financial assets
We can manage the entire HR process or individual aspects
-
Human resources consulting
Find out more about our human resources consulting services.
-
Payroll
Find out more about our payroll services.
-
HR News
HR News the monthly information newsletter by Grant Thornton HR
we can provide our clients with dedicated services aimed to increase the maturity and resilience of their businesses
-
Cybersecurity
GT Digital helps clients structure information security management internal functions, also through partially or totally outsourced functions
-
Agile and Programme Management
GT Digital provides support in the adoption and implementation of different portfolio management
-
Robotic Process Automation
Our “BOT Farm” can rely on digital workers able to help clients in routine activities, allowing employees to deal with more added-value activities
-
Data strategy and management
GT Digital can support clients in seizing the opportunities offered by Big Data, from the definition of strategies to the implementation of systems
-
Enterprise Resource Planning
We support clients in selecting the most appropriate ERP System according to their specific needs, helping them also understand licensing models
-
IT strategy
GT Digital supports clients in making strategic choices, identifying innovation opportunities, comparing themselves with competitors
-
IT service management
We can support with software selection and with the implementation of dedicated tools for the management of ICT processes
-
DORA and NIS 2
The entry into force of the DORA Regulation and NIS2 represents a major step towards the creation of a harmonised regulatory framework
Contents
Advantages of outsourcing
If implemented correctly, outsourcing allows reaching important results in terms of cost reduction, operating flexibility, scalability, and efficiency of activities and, at the same time, granting banks and financial intermediaries to focus on core activities.
Related risks and applicable regulation
Outsourcing an activity implies a number of risks (strategic, reputational, compliance, operating risks, etc.) that need to be evaluated and each time managed.
In order to guide intermediaries through a stable and safe management of outsourced activities and, mostly, to prevent related risks, the EBA issued new guidelines on outsourcing (Guidelines on outsourcing, EBA/GL/2019/02), which have been recently fully implemented by the Bank of Italy. The provisions of the Bank of Italy have been effective since 23 September 2020 and apply to all outsourcing agreements signed, renewed or amended starting from that date. The provisions set a plan with a range of objectives, up to the complete adjustment by 31/12/2021.
Requirements
Under the new provisions, intermediaries must meet different requirements, regarding the whole outsourcing process, i.e.: strategic and approach requirements, organizational and process requirements, and performance and control requirements.
In particular, the main requirements are:
- Create an outsourcing function or appoint a dedicated employee (senior staff member)
- Ensure to have proper resources, in terms of both skills and quantity
- Formalize and implement an outsourcing policy
- Record, in a proper register, the main characteristics of all outsourcing agreements
- Evaluate and manage the risk related to the activity to be outsourced and to the specific outsourcing agreements (including ICT risks, risks related to fintech and risks related to sub-outsourcing)
- Identify, assess, and manage conflicts of interest, even those within the group
- Adjust all outsourcing agreements by the end of 2021, in order to include the new provisions
- Ensure to have a strategy and agreements that allow to transfer to another supplier, reintegrate or suspend the key or important outsourced functions
- Prepare, maintain, and regularly test proper operating continuity plans with regard to key or important outsourced functions
- Ensure to have control systems with particular reference to personal or confidential data processing, to ICT risks and to cybersecurity, and to the compliance with performance and quality standards (service levels).
Our solutions: from the “gap analysis” to the full review of the outsourcing management framework
In our experience, we could ascertain that outsourcing management systems are often characterized by weaknesses, critical aspects and anomalies that expose intermediaries to relevant risks.
Fields of action
We can support you and take efficient actions in many areas:
- Support with strategic approach
- Realization of outsourcing management and organization processes
- Interventions focussed on specific aspects or weaknesses
- Coordination of the adjustment plan
- Inspections on site
Our planning
Definition of the strategic approach to outsourcing
- Policy definition
- Risk analysis
- Support with “make or buy” choice
Definition of the optimal organizational structure: identification of the organizational structure in relation to regulatory requirements and to the characteristics of the client
Gap Analysis & remediation plan: analysis of the current outsourcing management by identifying the gaps and actions to be taken
Outsourcing management framework: realization of the outsourcing management framework (policies, procedures, controls, register, contracts, etc.)
Identification and evaluation of providers: selection of providers and evaluation of their financial, technical, and management reliability
Management of contracts: check of contents, development and management of standards, monitoring and management of renewals, etc.
Monitoring of outsourced services
- Preparation of KPIs and reporting
- Assessment systems with reference to performance, timeliness, quality, service availability compared to rules and policies, etc.
Registration: definition of the register content, collection and update of information
Support with the management of outsourcing: coordination of outsourcing activities and relevant monitoring on behalf of the Manager
Definition of control systems: definition and implementation of proper control systems with regard to relevant aspects (privacy, ICT and Cybersecurity, service levels)
Audit activities: definition and realization of an audit plan with reference to both internal and external (providers’) fulfilments.