Hosted on MSN

Why US third-party vendors need to act fast on DORA compliance

The Digital Operational Resilience Act (DORA) has been in effect for over two months (since 17th January 2025, with the previous two years for preparation), but some organizations are still unprepared ...
Hosted on MSN

Managing third-party risks for DORA in financial services

The financial service industry is well-versed in stringent regulations. Unlike other sectors adjusting to legislation like Network and Information Systems Directive 2 (NIS2), FS organisations are ...
JD Supra

ESAs roadmap for designation of critical ICT third-party service providers under DORA

The European Supervisory Authorities (ESAs) have published a roadmap for the designation of critical ICT third-party service providers (CTPPs) under the EU Digital Operational Resilience Act (DORA).
JD Supra

Exploring DORA: EU Tightens IT Security Rules for the Financial Sector, Targeting "Critical" Third-Party Providers

In mid-December the European Union (EU) enacted new legislation aiming at harmonizing, and tightening, information technology (IT) security rules in the financial sector: Regulation (EU) 2022/2554 on ...
Traders Magazine

DORA to Change Sell-Side Third Party Risk Management

London – 22 November 2023: Firms across the sell-side are making significant changes to how they approach third-party risk management to meet the requirements of the EU’s Digital Operational ...