Checklist

DORA Compliance Checklist to Enhance ICT Risk Management and Strengthen Operational Resilience

The Digital Operational Resilience Act (DORA), previously known as Regulation (EU) 2022/2554, is a framework introduced by the European Union (EU) to strengthen the financial sector’s resilience to information and communication technology (ICT) risks. As such, DORA sets comprehensive standards to ensure financial institutions can effectively manage ICT-related incidents, maintain business continuity, and protect against third-party risks. 

DORA covers a wide range of financial entities including banks, payment service providers, insurance companies, and crypto-asset firms to safeguard the digital integrity of the financial ecosystem. 

There are four key pillars for DORA, such as ICT Risk Management, ICT Incident Management and Reporting, Operational Resilience Testing, and Third-Party Risk Management. 

Although the Council of the European Union and the European Parliament formally adopted DORA in November 2022, financial services firms will have until January 17, 2025 to achieve DORA compliance before enforcement starts.

Download this checklist to learn about the core requirements of the DORA regulation and understand how eSentire can help your financial services organisation achieve compliance with DORA, manage cyber risks, and build cyber resilience.  

Get The Checklist