An interdisciplinary approach between firms and their service providers is crucial to successfully "tame" DORA says PJ Di Giammarino of JWG.
EU DORA RTS - ICT risk management framework
Specifies the requirements for ICT security policies, procedures, protocols and tools. Sets out the simplified ICT risk management framework intended to ensure some flexibility in complying with DORA requirements is available to financial entities depending on their particular size, structure, internal organization and in the nature and complexity of their activities.
Notable
Latest News
Notable
Managing ICT third-party risk under DORA
Requirements imposed on financial services institutions when procuring ICT services from third parties - regulation and best practice.
Your DORA questions answered – Business resilience more broadly
This fifth of a series of articles covering a practical session organised by Ashurst focuses on business resilience questions connected to DORA.
Latest News
More on DORA
-
AK Jensen is Norway’s first crypto-asset service provider under MiCA
The investment firm may provide these services without a separate CASP authorization.
-
Demystifying the debate on the US CLOUD Act vs European/UK Data Sovereignty
Practical advice and steps for organizations to understand and comply with sovereignty and localization rules.
-
Lietuvos Bankas sets out agenda for dialogue with financial sector
The central bank intends to hold 17 events tied to compliance-central topics such as DORA, AML, and third-party risk management.
-
Iceland's Central Bank publishes priorities for financial market supervision
Cybersecurity, responsible business practices, and combating money laundering are among the 2026-2028 focus areas.
-
Ashurst Data Bytes 2026: Ready or not, increased cyber scrutiny is here
An Ashurst panel, together with guest speaker Will Barlow of Crowdstrike, discussed what steps you should be taking to prepare for a cybersecurity incident.
-
The EU's DORA: Strategic implications for third-party financial service providers
Many global organizations have learned that without appropriate oversight, third parties can become liabilities. Max Veve says DORA is the stand out regulation.
-
Building a resilient human firewall in UK financial services
The stark reality of modern cyber defence is that technology, however sophisticated, is easily bypassed by human error.
-
Europol issues critical roadmap for "quantum-proofing" global finance
Risk-based framework to help FIs identify which of their systems must be upgraded first to defend against the future threat of quantum computers.