DORA Resource Hub

Free DORA compliance advice and insights

What is DORA?

DORA (Digital Operational Resilience Act) sets out a harmonised approach to digital operational resilience across the EU’s financial sector.

Read more

Who does it apply to?

DORA applies to the EU’s financial sector and suppliers of ICT services to that sector – wherever those suppliers are based.

Read more

Deadline

17 January 2025

countdown

000
Days

00
Hours

00 Minutes

00
Seconds

What are the requirements of DORA?

DORA outlines requirements for:

  • ICT risk management;
  • Incident reporting;
  • Digital operational resilience testing;
  • Information sharing; and
  • Third-party risk management.

It also covers:

  • Contractual arrangements between financial entities and ICT third-party service providers;
  • An oversight framework for critical ICT third-party service providers; and
  • Cooperation among supervisory authorities, and supervision/enforcement rules.

Additional technical details will be provided by the European supervisory authorities (EBA, EIOPA, ESMA). Until then, refer to the DORA regulation for comprehensive information on expected requirements.

Free resources

 

EU DORA Regulation: ICT Incident Response Management Requirements

“The DORA Regulation sets out cyber security and business continuity requirements for financial organisations and their third-party ICT service providers. These include …”

Continue reading

Expert Insight: Andrew Pattison

“Andrew Pattison is the head of GRC consultancy at IT Governance Europe. We sat down to talk to him about the DORA regulation and the cyber landscape for the financial sector. For more details on...”

Continue reading

DORA: what you need to know

“DORA provides an approach to digital operational resilience for financial entities in all 27 member states, as well as their third-party ICT service providers – irrespective of those service providers’ location. The requirements are…”

Continue reading

 

DORA compliance and what it means for the financial sector 

Find out more

Strengthening Operational Resilience Under DORA

Find out more

Demonstrating compliance with DORA 

Find out more

Speak to a DORA expert

We can advise on cyber security and information security best practice. We can also provide an independent, expert assessment of your security and the extent to which it conforms to DORA’s requirements.

Call us now on +353 (0) 1 695 0411 or request a call back using the form below.

Contact us

top
SAVE 25% ON
FOUNDATION
TRAINING