IT Advisory for Financial Services & Banking

Financial services providers and banks across DACH face multiple compliance pressures in 2026: BaFin MaRisk and VAIT/BAIT in Germany, DORA as the EU-wide Digital Operational Resilience Act, FINMA cloud-outsourcing obligations in Switzerland. danad GmbH has delivered Citrix replacements with Azure Virtual Desktop, Microsoft Defender for Identity implementations and SOC readiness programmes at banking clients. Typical engagements: Azure migration with BaFin-compliant architecture and outsourcing contracts, Azure Virtual Desktop for trader workplaces (high performance, low latency, compliance logging), Microsoft Sentinel with MITRE ATT&CK detection for banking trojans and insider threats, Microsoft 365 Copilot rollouts with GDPR-compliant data residency in Azure Switzerland Regions, DORA compliance programmes with third-party risk management.

Typical pain points

• BaFin MaRisk and DORA require comprehensive operational resilience evidence
• Cloud outsourcing contracts need regulatory review — missing standards
• Banking trojans and APTs require detection capabilities beyond standard AV
• Trader workplaces need high performance and compliance logging simultaneously
• M&A in finance: PE-driven consolidation requires IT carve-outs under regulatory law

Relevant compliance frameworks

BaFin MaRiskBaFin VAIT / BAITEU DORA (Digital Operational Resilience Act)FINMA Circular 2018/3 OutsourcingNIS2ISO 27001

IT Advisory for Financial Services & Banking

Typical pain points

Relevant compliance frameworks

Service focus