DORA - DIGITAL AND OPERATIONAL RESILIENCE
DORA - Introduction of measures
The goal of the DORA (Digital Operational Resilience Act) regulation is to ensure that financial institutions are able to withstand, respond to, and recover from various digital threats such as cyberattacks or technical failures. The DORA regulation will come into effect on January 17, 2025, and will apply to the majority of financial institutions
Key Areas of Coverage
Resilience Testing
Who it Applies To
The main institutions that must comply with this regulation include:
- Banks: All types of banks, including commercial, investment, and credit institutions
- Insurance Companies: Life and non-life insurers, as well as reinsurance companies
- Investment Firms: Firms providing investment services and managing investment funds
- Payment Services: Providers of payment services and electronic money
- Leasing Companies: Companies offering leasing services
- Rating Agencies: Agencies providing credit ratings
- Crowdfunding Platforms: Platforms enabling crowdfunding investments
Additionally, DORA applies to external ICT service providers collaborating with financial institutions, including providers outside the EU if they offer services to financial institutions within the EU. This broad coverage ensures that all relevant entities within the financial sector are prepared for digital threats and can effectively respond to potential incidents.
RiA - Risk Analysis and Management
RiA is a unique tool for the systemic management of any risk in an organisation. It helps risk owners as well as cybersecurity and information security managers to manage risks.
OUR SERVICES
ANALYSIS
of the Current State of Information Security
Preparation
of Security Measures Documentation in Accordance with the Regulation
Performance of Functions:
- Information Security Manager
- Risk Management Manager
- Internal Auditor
