Developments include: potential standardization of threat-led penetration testing, new oversight director for DORA and ESA's work program.

Although non-mandatory and applicable to regulated entities in Germany the practical guidance offers helpful insight into key aspects of the new regime.

Increasing reliance on digital platforms and a growing threat from bad actors means regulators are giving more attention to cybersecurity compliance.

The mass data breach of the infamous Ashley Madison website offers insight into data privacy and cybersecurity.

A faulty code resulted in one of the most widespread tech outages in recent years for companies using Windows.

The RTSs focus on ICT-incident reporting, ICT risk management and contractual relationships with third-parties supporting critical or important functions

How mandatory contract provisions under DORA map to existing regulatory regimes in respect of outsourcing arrangements and highlighting some of the gaps.

Ashurst Partner Bradley Rice addressed some of the key practical challenges of DORA at Global Relay’s gathering of compliance professionals.