DORA regulation outlining process for identifying critical ICT third-parties published
It implements the specific assessment approach to be used by supervisory authorities and outlines fees payable by vendors designated as critical.
Welcome to GRIP, Global Relay's new digital information service on practical compliance and regulatory change.
Please enjoy this free trial of our subscription content service, for a limited time only.
EU DORA Del Reg - CTPP designation criteria
Sets out the critera to be used to assess whether an ICT third-party service provider is critical for financial entities. Utilizes a two-step test to identify those providers who are most critical.
Overview
Notable
Latest News
Notable
Your DORA questions answered – CIFs
This third of a series of six articles covering a practical session organised by Ashurst focuses on critical or important functions.
Managing vendors supporting critical or important functions - from zero to full compliance with DORA
A summary of key practical steps based on the draft technical standard.
Latest News
More on DORA
-
Could the Ashley Madison data breach happen today?
The mass data breach of the infamous Ashley Madison website offers insight into data privacy and cybersecurity.
-
Lessons on resilience as tech outage creates global disruption
A faulty code resulted in one of the most widespread tech outages in recent years for companies using Windows.
-
Three key DORA supporting technical standards now in force
The RTSs focus on ICT-incident reporting, ICT risk management and contractual relationships with third-parties supporting critical or important functions
-
Preparing for DORA: Mind the gap
How mandatory contract provisions under DORA map to existing regulatory regimes in respect of outsourcing arrangements and highlighting some of the gaps.
-
Compliance & Conversation: Preparing for DORA implementation
Ashurst Partner Bradley Rice addressed some of the key practical challenges of DORA at Global Relay’s gathering of compliance professionals.
-
As web apps and APIs widen the attack surface, security teams struggle to keep up
Latest State of Application Security report from web security firm Cloudflare reveals the size of the challenge.
-
Taming the DORA dragon
An interdisciplinary approach between firms and their service providers is crucial to successfully "tame" DORA says PJ Di Giammarino of JWG.
-
ECB consults on a proposed guide on outsourcing cloud services
Covering application of the Guide; overview of the ECB's supervisory expectations, including governance of cloud services and BCPs; and the DORA timetable.