DORA
DORA Compliance: Outsourcing of ICT Service Providers
Article 29 of DORA mandates comprehensive pre-contractual assessments to ensure robust regulatory compliance, particularly in two critical areas: ICT provider concentration and outsourcing-related risks
Joining Forces Against Cyber Threats: The Key Role of Information Sharing in the Financial Sector under the DORA Framework
the financial sector is exposed to cyber risks that are ever more complex and sophisticated. As a legal practitioner specializing in financial regulation, it is crucial to emphasize the importance…
What Are ICT Services under DORA?
In the dynamic landscape of European financial regulation, the Digital Operational Resilience Act (DORA) has introduced a series of concepts and definitions that warrant thorough analysis.
DORA: A New Challenge for Account Information Service Providers (AISPs)
DORA sets new challenges for AISPs, requiring stronger digital resilience, ICT risk management, and enhanced oversight in the financial sector.
Does DORA Discriminate Against Financial Microenterprises? The Truth Behind the Exemptions
DORA introduces a series of obligations to ensure the digital operational resilience of the financial sector. However, recognizing the diversity of the financial ecosystem, the regulation establishes a more flexible…
DORA: The Sword of Damocles Hanging Over Financial Executives in Cybersecurity?
DORA is unequivocal: it establishes the principle of “full and ultimate responsibility” of the board of directors in managing ICT-related risks.
DORA Unveils the Dark Secret of Banking: Are Our Financial Data Truly Secure?
In the current financial landscape, where cyberattacks are an everyday occurrence, a troubling question arises: Are our financial institutions truly prepared to safeguard our digital assets? The implementation of DORA…
Are You Ready for Ethical Hacking? DORA Opens the Door to “Internal Penetrators”
the Digital Operational Resilience Act (DORA) is shaking the foundations of cybersecurity in the sector. One of its most controversial provisions: the green light for “internal testers” to conduct penetration…
Is Your Financial Entity Prepared for the DORA Regulatory Tsunami?
In the ever-evolving landscape of European financial regulation, a new wave is about to hit the shores of financial entities: DORA (Digital Operational Resilience Act). This legislation, which promises to…
DORA and the Risk of Third-Party Concentration in ICT: A Sustainable Balance?
The DORA Regulation, in its endeavor to address the growing risk of third-party concentration in ICT, has drawn a fine line between the need to ensure financial stability and the…
DORA: key contractual clauses for access, inspection and audit of ICT providers
Learn how the DORA Regulation establishes access, inspection, and audit rights in ICT service contracts to ensure digital operational resilience in the financial sector.
DORA and Digital Trust: The Value of Standard Contractual Clauses for Cloud Services
The Digital Operational Resilience Act (DORA) represents a milestone in the regulation of cybersecurity and operational resilience within the financial sector.
Deciphered: Keys to Digital Operational Resilience in Financial Entities
In recent years, digitalization has radically transformed the financial sector. However, this transformation has also brought new risks, particularly in the realm of cybersecurity. To address these challenges, the European…
DORA and ICT Incident Notification: A Digital Big Brother for Banking?
The entry into force of DORA (Regulation (EU) 2022/2554) has marked a turning point in the regulatory landscape of cybersecurity in the financial sector. This new legal framework, designed to…
DORA: The New Paradigm in ICT Incident Reporting for Financial Entities
DORA sets a new standard for reporting incidents related to Information and Communication Technologies (ICT) and what this implies for Spanish financial entities.
