DORA, the Digital Operational Resilience Act, will fully apply as of 17 January 2025. The EU regulation requires that all regulated financial institutions implement the listed requirements for internal processes and systems and ensure that their third-party ICT service providers do the same. The approaching deadline in addition to the regular year-end business is most likely causing sleepless nights for some information security managers. They are asking themselves: How can they make the most of the short time left until 17 January 2025? Which steps are practical “quick wins”? What measures are “must-haves” for the first supervisory review?
To help you find the right answers, we have summarized everything you need to know from our news blog:
Everything you need to know in compact form
DORA & NIS-2
Thread-Led Penetration Testing (TLPT)
RTS & ITS
Obligation to report ICT-related incidents
We take the next steps with you
Do you have further questions about DORA or need specific support with implementation in your company? Get in touch. We will be happy to assist you.