Overview of the new regulation on digital operational resilience (DORA) for the financial sector in Sweden and other EU countries.
EU DORA RTS - ICT-related incident classification
Sets out the criteria and materiality thresholds for the classification of ICT-related, security payment-related and operational incidents at financial institutions. Ensures that the size and overall risk profile and the nature, scale and complexity of the financial entity is reflected in both threshold and criteria.
Overview
Notable
Latest News
Notable
An interdisciplinary approach between firms and their service providers is crucial to successfully "tame" DORA says PJ Di Giammarino of JWG.
EU deploys DORA to strengthen cyber resilience of the financial sector
Two new sets of rules aim to bolster cybsersecurity.
Latest News
More on DORA
-
Infringement procedures launched over delayed DORA transposition
Full implementation is vital for strengthening the EU's financial sector against increasing digital risks.
-
GRIP Extra: CFPB drops Zelle suit, Barclays suffers 3-day IT outage
Other news includes assistance from the SEC for filers using EDGAR, a probe into Nvidia shipments to Malaysia and another bank reviewing its approach to DEI.
-
Privacy experts give advice on complying with DORA and NIS2
Adequate preparation, identifying what and who is critical, and, above all, "practice, practice, practice" highlighted.
-
Podcast: Practice and procedure with GRIP – DORA implementation
DORA is a response to persistently elevated cyber threat levels, Jean and Thomas discuss how firms can achieve operational resilience.
-
ESAs make progress on critical ICT third-party oversight framework
ICT providers designated critical under DORA will get six weeks to challenge the designation.
-
EBA narrows existing ICT guidelines
DORA ICT risk management requirements apply to financial entities in their place.
-
Why tech, process and people are top of mind for CISO Laurence Lafond
In this second part of our discussion with Lafond, he refers to internal threats, side-channel attacks, vendor risks and having a well-equipped incident response plan and team.
-
DORA: Navigating the path ahead
With DORA now in effect, the EU’s financial sector is entering a new phase of operational resilience obligations, where firms must shift from preparation to action.