PillarOne

Who We Are

The pillars behind your resilience

A Cyprus-based cyber security and compliance firm — built for regulated finance.

PillarOne was founded on the pillars of DORA — the EU Digital Operational Resilience Act — and the conviction that seriously regulated institutions deserve seriously good security. We serve Cyprus Investment Firms, Electronic Money Institutions, payment institutions, credit institutions, and the law firms and corporate services providers that support them.

Request ConsultationTalk to an Expert

Our mission

We exist to make operational resilience real — not a binder on a shelf. Our engineers, vCISOs, and DPOs combine the Sentinel Platform with hands-on advisory to deliver controls that work in production and evidence that holds up in a supervisory review.

What we do

  • • DORA, NIS2, and ISO 27001 programme design and implementation
  • • vCISO, DPO-as-a-Service, and IT Manager-as-a-Service
  • • ICT risk assessments, threat-led penetration testing, and resilience testing
  • • Sentinel Platform deployment and managed services
  • • Third-party risk management aligned to DORA Chapter V
  • • Incident response, forensics, and supervisory reporting

Why "PillarOne"?

Our name is drawn from the pillars of DORA — ICT risk management, incident reporting, resilience testing, third-party risk, and information sharing. These are not abstract requirements; they are the load-bearing structures of a resilient financial institution. We build, operate, and prove every one of them.

Regulatory Coverage

Standards and frameworks we deliver against

CySEC

Cyprus Securities and Exchange Commission directives — CIF licensing, ICT governance, outsourcing, business continuity.

Central Bank of Cyprus

CBC ICT and security risk management circulars — EMI, payment institution, and credit institution standards.

DORA

EU Digital Operational Resilience Act — ICT risk, incident reporting, resilience testing, third-party risk.

NIS2

EU Network and Information Security Directive — supervisory and management obligations across critical sectors.

ISO 27001

Information Security Management Systems — design, implementation, certification readiness, and continual improvement.

EBA Guidelines

European Banking Authority ICT and security risk management guidelines (EBA/GL/2019/04) and outsourcing arrangements.

Ready to harden your resilience?

Speak with a PillarOne specialist about DORA, NIS2, ISO 27001, and EBA-aligned controls built for Cyprus Investment Firms and Electronic Money Institutions.

Request Consultation →