NEWSLETTER
Issue #3
MARCH, 2025
The DORA Regulation:
Enhancing Digital Operational Resilience in the Financial Sector
The recently enacted Regulation 2022/2554, also known as the Digital Operational Resilience Act (DORA), aims to bolster the digital operational resilience of financial institutions across the European Union, ensuring they can withstand, respond to and recover from ICT-related disruptions and threats.DORA entered into force on January 16, 2023. Throughout 2024, financial institutions and ICT third-party service providers asked to prepare and implement the required frameworks and processes. Full compliance with DORA is mandatory by midJanuary 2025.
Aim: The primary goal of DORA is to enhance digital resilience by establishing robust frameworks to manage ICT risks and ensure the continuity of financial services. It aims to harmonize ICT risk management by creating uniform requirements across the EU for managing ICT risks in the financial sector. Additionally, DORA seeks to strengthen incident response by improving the detection, management, and reporting of ICT-related incidents.