An interdisciplinary approach between firms and their service providers is crucial to successfully "tame" DORA says PJ Di Giammarino of JWG.
EU DORA RTS - ICT risk management framework
Specifies the requirements for ICT security policies, procedures, protocols and tools. Sets out the simplified ICT risk management framework intended to ensure some flexibility in complying with DORA requirements is available to financial entities depending on their particular size, structure, internal organization and in the nature and complexity of their activities.
Notable
Latest News
Notable
Managing ICT third-party risk under DORA
Requirements imposed on financial services institutions when procuring ICT services from third parties - regulation and best practice.
Your DORA questions answered – Business resilience more broadly
This fifth of a series of articles covering a practical session organised by Ashurst focuses on business resilience questions connected to DORA.
Latest News
More on DORA
-
Counting down to DORA compliance
Developments include: potential standardization of threat-led penetration testing, new oversight director for DORA and ESA's work program.
-
DORA implementation guidance published by BaFin
Although non-mandatory and applicable to regulated entities in Germany the practical guidance offers helpful insight into key aspects of the new regime.
-
Navigating cybersecurity compliance: NIS2 UK/US stakeholder impact
Increasing reliance on digital platforms and a growing threat from bad actors means regulators are giving more attention to cybersecurity compliance.
-
Could the Ashley Madison data breach happen today?
The mass data breach of the infamous Ashley Madison website offers insight into data privacy and cybersecurity.
-
Lessons on resilience as tech outage creates global disruption
A faulty code resulted in one of the most widespread tech outages in recent years for companies using Windows.
-
Three key DORA supporting technical standards now in force
The RTSs focus on ICT-incident reporting, ICT risk management and contractual relationships with third-parties supporting critical or important functions
-
Preparing for DORA: Mind the gap
How mandatory contract provisions under DORA map to existing regulatory regimes in respect of outsourcing arrangements and highlighting some of the gaps.
-
Compliance & Conversation: Preparing for DORA implementation
Ashurst Partner Bradley Rice addressed some of the key practical challenges of DORA at Global Relay’s gathering of compliance professionals.