FINMA Circular 2023/1 compliance. Cybersecurity at Swiss banking grade.
FINMA-RS 2023/1 compliant cyber audit, ISO 27001, banking-grade vCISO and 24/7 managed SOC for wealth managers, private banks and Swiss FinTechs. Geneva, Zurich, Lugano.
The FINMA-RS 2023/1 puzzle for wealth managers
Between regulatory obligation and operational reality of a 5-50 person asset manager.
FINMA Circular 2023/1 misinterpreted
The circular requires cyber-risk management proportional to institution size and complexity. Many asset managers overengineer (costly) or underdeliver (non-compliant). Proper scoping saves CHF 30-50k/year.
No mapping of information assets
FINMA requires you to know your critical data (client positions, KYC, orders). 90% of asset managers have no up-to-date map. Without it, impossible to prove risk control.
Vendor risk (Avaloq, Temenos, Bloomberg) ignored
You depend on 5-10 critical external providers. FINMA-RS 2023/1 requires annual third-party risk assessment. Most don't do it - it's the first finding in audits.
Patchwork business continuity
What happens if your core banking is down 48h? If your office is ransomwared during quarter close? Without a tested BCP/DRP, it's a FINMA fine and client outflow to competitors.
What we do for wealth management
Aligned with FINMA-RS 2023/1, AML, ISO 27001 and the confidential banking culture.
FINMA cyber audit
Full audit aligned with FINMA-RS 2023/1: governance, mapping, technical controls, vendor risk, BCP/DRP, KPIs. Bankable report. From CHF 12,000.
Outsourced banking vCISO
A senior CISO part-time (0.5 to 2 days/month) covering FINMA, ISO 27001, DPIA, incident management and board reporting. Saves CHF 150-250k/year vs. full-time CISO.
24/7 managed SOC Swiss-based
24/7 detection by Swiss-based operators. SIEM (Wazuh, Splunk) + financial threat intel. Incident notification SLA < 2h, FINMA-compliant.
Annual internal + external pentest
Regular penetration tests (workstations, file server, web banking, mobile app, remote access). Executive + technical report. Suitable for FINMA committee.
Our method - battle-tested on Swiss ground
Four pragmatic steps. No fluff, no slide-ware.
48h diagnostic
Targeted audit: interviews, read-only access, technical review. You leave with a written assessment and 3 quick-wins to action immediately.
Priced action plan
3-12 month roadmap, prioritized by risk and ROI. Transparent price ranges. We tell you what can wait - and what cannot.
Delivery
Our team ships in short sprints. You validate at each step. The code, infrastructure and procedures belong to you.
Run & continuous improvement
Maintenance, supervision, regular security reviews. We remain your Swiss point of contact, with no offshore hotline.
100% Swiss stack & partners
Tech sovereignty: everything we deploy stays auditable and hosted in Switzerland.
Hosting
Infomaniak (Geneva, Zurich), Exoscale, OVHcloud Geneva - ISO 27001, Swiss datacenters.
Cybersecurity
Wazuh SIEM, Suricata IDS, WireGuard VPN, YubiKey FIDO2, Authelia, Vault.
On-prem AI
Ollama, Mistral, vLLM, Qdrant RAG, Flowise, n8n MCP - LLMs with zero data leakage.
Dev & business
React 19, TypeScript, Python/FastAPI, PostgreSQL, Docker. Hexagonal architecture.
FAQ - Wealth Management
FINMA, ISO 27001, vCISO, SOC.
What are FINMA cybersecurity obligations for a wealth manager in 2026?
FINMA Circular 2023/1 "Operational Risks and Resilience" requires: (1) board-level cyber-risk governance, (2) mapping of critical information assets, (3) third-party risk management, (4) annually tested BCP/DRP, (5) incident management with FINMA notification if material, (6) regular reporting to the board. Proportionality applies: a 10-person EAM doesn't have the same obligations as a universal bank.
How much does a vCISO cost in Switzerland?
Between CHF 2,000 and 8,000/month depending on engagement (0.5 to 2 days/month). For a 10-30 person wealth manager, count CHF 3,500-5,000/month for a senior vCISO covering cybersecurity + DPO + FINMA reporting. That's 10x cheaper than a full-time in-house CISO (CHF 180-250k/year loaded).
How much does ISO 27001 certification cost in Switzerland?
For a 10-50 person structure: CHF 30,000-80,000 the first year (consulting + audit), then CHF 8-15k/year for maintenance. Lead time 9-18 months. ROI: commercial differentiation (bank/family-office clients require it), reduced cyber-insurance premium, FINMA expectations met.
Which SOC for a Swiss wealth manager?
Pick a SOC that is: (1) Swiss-based (governance + data), (2) 24/7 staffed by humans (not just automated), (3) with financial threat intel, (4) SLA < 2h for critical incident, (5) able to produce FINMA reporting. Monthly cost: CHF 2,500-7,000 depending on volume.
Is a DPIA needed for an EAM?
Yes in 2 cases: (1) large-scale processing of sensitive financial data of clients (UHNWI, multi-jurisdiction family offices), (2) automated profiling (client scoring, AML). We support DPIA drafting on a vCISO model for CHF 1,500-4,000 per DPIA.
Hardware MFA or TOTP for wealth management?
For access to core tools (core banking, KYC, client file): hardware FIDO2 MFA is mandatory (YubiKey, SoloKey). Application TOTP (Google Authenticator) remains phishable. For admin / privileged access: combine hardware MFA + jump host + quarterly review. That's what FINMA expects.
Le Dahu services for this sector
All our services adapt to your business and constraints.
Pricing ranges - wealth management
Indicative ranges for 2026. Personalized quote in 48h after a call. VAT excluded.
Bankable FINMA audit - 30 minutes to scope.
Talk with a senior wealth-management vCISO. Confidential, no commitment.
Book the audit