Overview of the new regulation on digital operational resilience (DORA) for the financial sector in Sweden and other EU countries.
Rules Navigator
- Regulation
- Technology
- Resources
Latest News
- Industry
EU DORA RTS - ICT-related incident classification
Sets out the criteria and materiality thresholds for the classification of ICT-related, security payment-related and operational incidents at financial institutions. Ensures that the size and overall risk profile and the nature, scale and complexity of the financial entity is reflected in both threshold and criteria.
Overview
Notable
Latest News
Notable
An interdisciplinary approach between firms and their service providers is crucial to successfully "tame" DORA says PJ Di Giammarino of JWG.
EU deploys DORA to strengthen cyber resilience of the financial sector
Two new sets of rules aim to bolster cybsersecurity.
Latest News
More on DORA
-
EU designates critical ICT third-party providers under DORA
European supervisors carried out a systematic assessment of the importance of each service provider to the financial sector, before deciding on designation.
-
Cyber incident response and compliance with DORA
A consideration of the expectations and processes to follow should an in-scope entity, (including banks, assets managers, and insurers), suffer a cyberattack.
-
Can you access your outsourced data?
Why access to data held by TPPs is critical for operational resilience, regulatory expectations, and escrow to support data access.
-
ECB issues new guidance on outsourcing cloud services
The guide sets out the central bank's expectations on the requirements of DORA, including good practices which add an additional layer of complexity.
-
What you need to know about ESMA's new Registration Guide
While not legally binding, the guide provides clarity on ESMA's assessment process for financial entities navigating the registration process.
-
BaFin publishes DORA document requirements cheat sheet
Comprehensive register of key documents is relevant to all organizations running digital systems and needing to ensure their security.
-
BaFIN to intensify third-party supervision in 2025
The regulator continues to be concerned about outsourcing dependency and concentration risk and wants to obtain clarity on technology interconnectedness in the financial sector.
-
Infringement procedures launched over delayed DORA transposition
Full implementation is vital for strengthening the EU's financial sector against increasing digital risks.