DORA Resource Hub

Free DORA compliance advice and insights

What is DORA?

DORA (Digital Operational Resilience Act) sets out a harmonised approach to digital operational resilience across the EU’s financial sector.

Read more

Who does it apply to?

DORA applies to the EU’s financial sector and suppliers of ICT services to that sector – wherever those suppliers are based.

Read more


17 January 2025




00 Minutes


What are the requirements of DORA?

DORA outlines requirements for:

  • ICT risk management;
  • Incident reporting;
  • Digital operational resilience testing;
  • Information sharing; and
  • Third-party risk management.

It also covers:

  • Contractual arrangements between financial entities and ICT third-party service providers;
  • An oversight framework for critical ICT third-party service providers; and
  • Cooperation among supervisory authorities, and supervision/enforcement rules.

Additional technical details will be provided by the European supervisory authorities (EBA, EIOPA, ESMA). Until then, refer to the DORA regulation for comprehensive information on expected requirements.

Free resources


EU DORA Regulation: ICT Incident Response Management Requirements

“The DORA Regulation sets out cyber security and business continuity requirements for financial organisations and their third-party ICT service providers. These include …”

Continue reading

Expert Insight: Andrew Pattison

“Andrew Pattison is the head of GRC consultancy at IT Governance Europe. We sat down to talk to him about the DORA regulation and the cyber landscape for the financial sector. For more details on...”

Continue reading

DORA: what you need to know

“DORA provides an approach to digital operational resilience for financial entities in all 27 member states, as well as their third-party ICT service providers – irrespective of those service providers’ location. The requirements are…”

Continue reading


DORA compliance and what it means for the financial sector 

Find out more

Strengthening Operational Resilience Under DORA

Find out more

Demonstrating compliance with DORA 

Find out more


Data breach and cyber attack reports

EU Digital Operational Resilience Act (DORA) - A compliance guide

Download now

Speak to a DORA expert

We can advise on cyber security and information security best practice. We can also provide an independent, expert assessment of your security and the extent to which it conforms to DORA’s requirements.

Call us now on +353 (0) 1 695 0411 or request a call back using the form below.

Contact us

SAVE 25%