Luxembourg strengthens its financial centre against cyberthreats

Training, awareness and resilience

The Luxembourg House of Cybersecurity (LHC) has been a pioneer in immersive training with its ROOM#42 crisis simulation centre. Inspired by NATO’s “Locked Shields” exercises, it confronts company teams with scenarios such as ransomware, disinformation or system shutdowns to test their reactions under pressure. This work is complemented by the NC3 (awareness and prevention) and CIRCL (incident response), which provide tools, intelligence and support across the country.

A strong private-sector ecosystem

Cybersecurity has also developed into a vibrant industry in Luxembourg, with more than 300 specialised companies active in technology and advisory services. “Both in terms of skills and technology, the specialised companies active in Luxembourg cover all the needs that financial players might have,” underline Ilker Tutu (PayPal Europe) and Antoine Meyers (BGL BNP Paribas), respectively chair and vice-chair of the ABBL Trust and Cybersecurity Committee.

ABBL’s commitment

For the ABBL, cybersecurity is a strategic priority.

This reality underlines the need for collective action. The ABBL collaborates with both public institutions and private actors to raise awareness, promote best practices and ensure that banks and their clients are protected in a constantly evolving threat landscape.

Regulation and supervision

The CSSF and BCL play a key role in this ecosystem, ensuring that Luxembourg’s regulatory framework is adapted to the growing complexity of cyberthreats. Through incident management, large-scale testing (TIBER-LU), and the implementation of the Digital Operational Resilience Act (DORA), the regulator provides structure and accountability.