DORA: Interpreting the EU's Digital Operational Resilience Act

The Digital Operational Resilience Act (DORA) aims to strengthen the ICT security of financial entities and ensure the resilience of the financial sector in the event of cyber-attacks or other digital disruption.

DORA: Interpreting the EU's Digital Operational Resilience Act is a definitive and detailed handbook, covering the legislative and compliance requirements. Split into two parts, this book provides an in-depth guide to DORA, whilst also examining the most recent updates and current practical issues.

The book covers the various new and detailed reporting obligations that are created, alongside:

• Increasing different types of IT security
• Digital operational resilience (which is wider than just security)
• Boards, roles and responsibilities
• ICT risk management frameworks
• Digital operational resilience testing and penetration testing and assessing
• Patching and vulnerabilities
• Modern and legacy systems
• Identification, protection, prevention, and detection
• Response, recovery, and backups
• Third party service providers and dependencies
• Crisis communication responses, training, learning, and evolving
• Liability, investigations, enforcement, costs, and penalties

The guide is essential reading for those working in financial services, insurance and ICT, alongside legal professionals and industry regulators.