IL-ISACA
Reforms following the 2008 financial crisis helped strengthen the resilience of the financial sector, but did not fully address digital operational resilience. The European Union’s recently released Digital Operational Resilience Act (DORA) draft is designed to provide digital operational resilience rules for EU financial institutions, and ISACA provides guidance on this proposal in its new white paper, Digital Operational Resilience in the EU Financial Sector: A Risk-Based Approach .
When finalized, DORA will enact rules for financial services system operators like investment firms, credit institutions, trading venues and electronic money institutions to ensure these systems’ stability and resilience to cyber incidents. Digital Operational Resilience in the EU Financial Sector outlines the objectives and legal basis for DORA, as well as its information and communication technology (ICT) requirements around risk management, information and cybersecurity, incident reporting, testing, and oversight of third-party service providers, some of which include:
- Set up and maintain resilient ICT systems and tools that minimize the impact of ICT risk.
- Have an ICT risk-management framework that includes strategies, policies, procedures, ICT protocols and tools necessary to effectively protect all relevant physical components and infrastructures from risk, such as damage and unauthorized access or usage.
- Test the ICT business continuity policy and the ICT disaster recovery plan at least yearly, and after substantive changes to the ICT systems.
- Include relevant provisions on accessibility, availability, integrity, security and protection of personal data, and guarantees for access, recover and return in the case of failures of the ICT third-party service providers in contracts that govern the relationship with third-party providers.
“The requirements laid out in DORA to identify all sources of ICT risk on a continuous basis and mandate an annual review of ICT risk management frameworks and review after a major incident, audit or testing are a step in the right direction,” says Chris Dimitriadis, ISACA chief global strategy officer. “However, to further strengthen the act, ISACA encourages provisions ensuring that ICT risk management plans go beyond being a compliance exercise by embedding governance responsibility within the management body, as well as requiring continuous training and ICT awareness of senior management and staff and independent testing performed by testers who are certified.”
During this period in which the DORA regulation is under consideration in the European Parliament and Council of the EU, ISACA’s EU Task Force is engaging with policy makers and sharing feedback. The final version of the regulation is expected in an estimated 18-24 months.
“ISACA is recognized among policy makers as an independent source of expertise on cybersecurity issues. The variety of backgrounds and experience of our members, reflected in the EU Task Force, have been welcomed by policy makers who have valued our contributions to the debate,” says Emily Bastedo, ISACA director for global government relations and public affairs.
To download a complimentary copy of Digital Operational Resilience in the EU Financial Sector , visit https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004L1sxEAC . Additional publications that may be helpful for financial entities as they prepare for DORA include ISACA’s Risk IT Framework , 2nd Edition ; Risk IT Practitioner Guide, 2nd Edition ; and IT Risk Fundamentals Study Guide . Other IT risk-related resources can be found at www.isaca.org/resources/it-risk .
About ISACA
For more than 50 years, ISACA® (www.isaca.org ) has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.
Twitter:
www.twitter.com/ISACANews
LinkedIn:
www.linkedin.com/company/isaca
Facebook:
www.facebook.com/ISACAGlobal
Instagram:
www.instagram.com/isacanews
View source version on businesswire.com: https://www.businesswire.com/news/home/20211014005760/en/
Link:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
CapVest and Parquest Agree Terms on IPN’s Acquisition of Sopral8.7.2025 10:00:00 CEST | Press release
Inspired Pet Nutrition (“IPN”), the fast-growing pet food company controlled by CapVest Partners LLP (“CapVest”), and Parquest, a leading investment firm, have agreed terms on the acquisition of Sopral, a prominent branded pet food platform serving the European market, with manufacturing operations based in France. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250708134461/en/ Sopral products The transaction is subject to customary regulatory approvals and closing conditions. Financial terms have not been disclosed. Based in Pléchâtel, Brittany, France, Sopral is a leading manufacturer of branded premium dry petfood with a comprehensive range of high-quality nutritional solutions, including Pro-Nutrition Prestige, Pure Life and Protect brands. Sopral has a strong footprint and reputation in France and a fast growing online and international market presence in over 50 countries around the world. Employing over 130 people, th
Thales Reinforces its Leadership in eSIM and IoT Connectivity with a ‘Ready to Use’ Certified Solution8.7.2025 08:00:00 CEST | Press release
At a time when billions of connected objects are reshaping industries, Thales has achieved an essential security certification for its eSIM solution, reinforcing its leadership in trusted connectivity management for the Internet of Things (IoT). The certification, granted by the GSMA under the eSIM Security Assurance (eSA) scheme, marks a significant milestone in enabling large-scale, secure, and efficient IoT deployments across industries including smart metering, healthcare, and automotive. This positions Thales as a trusted partner capable of providing full protection against advanced cyber threats — delivering end-to-end security solutions, from chip to cloud, and ensuring compliance with emerging security standards (e.g., the EU Cyber Resilience Act). With over 5.8 billion IoT cellular connections expected globally by 2030 (GSMA Intelligence), businesses and industries face growing pressure to deploy connected devices at scale — securely and efficiently. The SGP.32 IoT specificati
Invivoscribe Expands Flow Cytometry Services to Accelerate CAR-T Immunotherapy Development and Regulatory Readiness with the Initiation of CERo Therapeutics Phase 1 Clinical Trial8.7.2025 06:00:00 CEST | Press release
Invivoscribe Inc., a global leader in precision diagnostics and measurable residual disease (MRD) testing, is proud to support CERo Therapeutics Holdings, Inc., an innovative immunotherapy company seeking to advance the next generation of engineered T cell therapeutics that employ phagocytic mechanisms. Through this collaboration, LabPMM (Invivoscribe’s global reference laboratories) have customized their multiparametric flow cytometry (MFC) services and implemented their sensitive MFC AML MRD assay to supportCERo’s clinical trial of its lead compound, CER-1236. The trial targets Acute Myeloid Leukemia (AML) in patients who are relapsed/refractory, in remission with MRD, or newly diagnosed with TP53-mutated MDS/AML. AML is an aggressive blood cancer characterized by the rapid accumulation of abnormal myeloid cells in the bone marrow and blood, disrupting normal hematopoiesis.1 Treating AML is especially complex due to its genetic heterogeneity and the high risk of relapse. CAR-T (chime
Tigo Energy Adds Solar-Plus-Storage Portfolio in Czech Republic to Build on MLPE Success8.7.2025 06:00:00 CEST | Press release
Successful PPDS P4 protocol certification opens full range of three-phase Tigo EI Inverters and the EI Residential product suite for grid connection in second-strongest E.U. market for Tigo. Tigo Energy, Inc. (NASDAQ: TYGO) (“Tigo” or “Company”), a leading provider of intelligent solar and energy software solutions, today announced that the Company’s entire portfolio of three-phase Tigo EI Inverters has successfully passed the certification tests for compliance with the PPDS P4 requirements in the Czech Republic. Compliance with PPDS P4, formally known as Distribution System Operation Rules, Annex 4, is a prerequisite for grid connection of solar inverters in the Czech Republic, validating the compatibility with the technical conditions defined by the European Commission and adopted by local utility companies. In the wake of the proliferation of rapid shutdown requirements across Europe, with installers in the Czech Republic deploying nearly 107MW of Tigo MLPE in 2024, Tigo products ha
Murata Launches World’s First High-Frequency Filter Using XBAR Technology for 5G, Wi-Fi 7, and Future 6G Networks8.7.2025 04:00:00 CEST | Press release
Murata Manufacturing Co., Ltd. (TOKYO: 6981) (ISIN: JP3914400001) has announced the mass production and commercial shipment of the world’s first*1 high-frequency filter using XBAR technology*2. Developed by combining Murata’s proprietary Surface Acoustic Wave (SAW) filter expertise with XBAR technology from Murata's subsidiary Resonant Inc., it enables the extraction of desired signals while achieving both low insertion loss and high attenuation. These features are critical for the latest wireless technologies, including 5G, Wi-Fi 6E, Wi-Fi 7, and emerging 6G technologies. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250707682186/en/ [Murata Manufacturing Co., Ltd.] The world’s first high-frequency filter using XBAR technology The demand for reliable high-frequency communications continues to grow in response to the widespread deployment of 5G and the future development of 6G. Simultaneously, wireless local-area network (W
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom