-
Infringement procedures launched over delayed DORA transposition
Full implementation is vital for strengthening the EU’s financial sector against increasing digital risks.
-
GRIP Extra: CFPB drops Zelle suit, Barclays suffers 3-day IT outage
Other news includes assistance from the SEC for filers using EDGAR, a probe into Nvidia shipments to Malaysia and another bank reviewing its approach to DEI.
-
Privacy experts give advice on complying with DORA and NIS2
Adequate preparation, identifying what and who is critical, and, above all, “practice, practice, practice” highlighted.
-
Podcast: Practice and procedure with GRIP – DORA implementation
DORA is a response to persistently elevated cyber threat levels, Jean and Thomas discuss how firms can achieve operational resilience.
-
ESAs make progress on critical ICT third-party oversight framework
ICT providers designated critical under DORA will get six weeks to challenge the designation.
-
EBA narrows existing ICT guidelines
DORA ICT risk management requirements apply to financial entities in their place.
-
Why tech, process and people are top of mind for CISO Laurence Lafond
In this second part of our discussion with Lafond, he refers to internal threats, side-channel attacks, vendor risks and having a well-equipped incident response plan and team.
-
DORA: Navigating the path ahead
With DORA now in effect, the EU’s financial sector is entering a new phase of operational resilience obligations, where firms must shift from preparation to action.