Digital Operational Resilience Act Takes Effect in EU
On January 17, 2025, the Digital Operational Resilience Act (DORA) came into force across the European Union, standardizing cybersecurity and digital risk management requirements for all financial institutions, including their critical third-party providers.
Under the Digital Operational Resilience Act, financial institutions across the EU are required to adopt comprehensive measures to manage digital risks and ensure operational continuity, even in the face of significant disruptions to their IT infrastructure.
The DORA extends beyond the narrow concept of cybersecurity, serving as a robust regulatory framework that demands financial institutions demonstrate readiness for any operational disruptions related to information and communications technologies (ICT). Regulators emphasize the following key points:
- ICT risk management. Banks, insurance companies, investment funds, and other organizations must implement structured policies and processes for ICT risk management, including assessment, prevention, and continuous monitoring of incidents.
- Third-party oversight. The DORA applies to key ICT service providers, such as cloud service providers, software developers, and outsourcing companies. From 2025, financial organizations may only work with providers that meet information security standards like ISO 27001 and SOC 2.
- Unified approach to digital resilience. The DORA sets a benchmark for ICT risk management, akin to how the General Data Protection Regulation (GDPR) established a global standard for data protection.
- Documentation and compliance evidence. Rather than prescribing strict instructions, the DORA requires ongoing monitoring and proof of digital resilience. Organizations must be ready to present documentation at any time, ranging from qualitative recovery time metrics to audit reports on contractor performance.
The DORA aims to streamline the digital environment in the financial sector, minimizing risks and creating a level playing field. For organizations that prepare in advance, the new regulation is expected to be a driver for strengthening operational resilience and reputation. According to PwC, more than 22,000 financial companies and ICT service providers are subject to the DORA.
The new Instant Payments Regulation (IPR) came into force on January 9, 2025, requiring all payment providers in the EU to ensure that incoming credit payments are processed within 10 seconds.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Regret Missing Toshi’s Spike? BTFD Coin’s Presale Is Live—And It Could Turn $5K into $450K by the Time It Hits Its $0.006 Target
BTFD Coin is still in Stage 15 of its meme coin presale, priced at $0.0002, with a forecast of $0.006 and a chance to triple holdings using the LAUNCH200 bonus code.BTFD Coin’s Referral Program: Earn Big by Spreading the WordToshi’s Rise Was Real—but the Entry Point’s Long Gone
Best Crypto Presales to Buy: 3 ICOs with 10x Potential
Nexchain: The AI-Powered Blockchain Built for Speed and ScaleBTC Bull Token: Riding Bitcoin’s Momentum with Leverage$SUBBD Token: Powering the No.1 AI Agent Creator PlatformConclusion
XP raises $6,2 million with Solana and NFTs
Heritage Distilling Adopts Crypto Payments
Heritage Distilling Company, Inc. (NASDAQ: CASK) is making a bold foray into the digital economy, becoming one of the first craft spirits producers to implement a formal Cryptocurrency Treasury Reserve Policy. Announced on May 15, the new strategy enables the Washington-based distiller to accept Bitcoin and Dogecoin as payment via its direct-to-consumer (DTC) e-commerce platform while holding these digital assets as part of its broader treasury management plan.
Trending news
MoreCrypto prices
More
