IL-ISACA
Reforms following the 2008 financial crisis helped strengthen the resilience of the financial sector, but did not fully address digital operational resilience. The European Union’s recently released Digital Operational Resilience Act (DORA) draft is designed to provide digital operational resilience rules for EU financial institutions, and ISACA provides guidance on this proposal in its new white paper, Digital Operational Resilience in the EU Financial Sector: A Risk-Based Approach .
When finalized, DORA will enact rules for financial services system operators like investment firms, credit institutions, trading venues and electronic money institutions to ensure these systems’ stability and resilience to cyber incidents. Digital Operational Resilience in the EU Financial Sector outlines the objectives and legal basis for DORA, as well as its information and communication technology (ICT) requirements around risk management, information and cybersecurity, incident reporting, testing, and oversight of third-party service providers, some of which include:
- Set up and maintain resilient ICT systems and tools that minimize the impact of ICT risk.
- Have an ICT risk-management framework that includes strategies, policies, procedures, ICT protocols and tools necessary to effectively protect all relevant physical components and infrastructures from risk, such as damage and unauthorized access or usage.
- Test the ICT business continuity policy and the ICT disaster recovery plan at least yearly, and after substantive changes to the ICT systems.
- Include relevant provisions on accessibility, availability, integrity, security and protection of personal data, and guarantees for access, recover and return in the case of failures of the ICT third-party service providers in contracts that govern the relationship with third-party providers.
“The requirements laid out in DORA to identify all sources of ICT risk on a continuous basis and mandate an annual review of ICT risk management frameworks and review after a major incident, audit or testing are a step in the right direction,” says Chris Dimitriadis, ISACA chief global strategy officer. “However, to further strengthen the act, ISACA encourages provisions ensuring that ICT risk management plans go beyond being a compliance exercise by embedding governance responsibility within the management body, as well as requiring continuous training and ICT awareness of senior management and staff and independent testing performed by testers who are certified.”
During this period in which the DORA regulation is under consideration in the European Parliament and Council of the EU, ISACA’s EU Task Force is engaging with policy makers and sharing feedback. The final version of the regulation is expected in an estimated 18-24 months.
“ISACA is recognized among policy makers as an independent source of expertise on cybersecurity issues. The variety of backgrounds and experience of our members, reflected in the EU Task Force, have been welcomed by policy makers who have valued our contributions to the debate,” says Emily Bastedo, ISACA director for global government relations and public affairs.
To download a complimentary copy of Digital Operational Resilience in the EU Financial Sector , visit https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004L1sxEAC . Additional publications that may be helpful for financial entities as they prepare for DORA include ISACA’s Risk IT Framework , 2nd Edition ; Risk IT Practitioner Guide, 2nd Edition ; and IT Risk Fundamentals Study Guide . Other IT risk-related resources can be found at www.isaca.org/resources/it-risk .
About ISACA
For more than 50 years, ISACA® (www.isaca.org ) has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.
Twitter:
www.twitter.com/ISACANews
LinkedIn:
www.linkedin.com/company/isaca
Facebook:
www.facebook.com/ISACAGlobal
Instagram:
www.instagram.com/isacanews
View source version on businesswire.com: https://www.businesswire.com/news/home/20211014005760/en/
Link:
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
SCENTMATIC's AI "KAORIUM" Debuts at THAMEEN Fragrance Launch in London's Selfridges4.7.2025 11:13:00 CEST | Press release
SCENTMATIC Inc., a leader in scent digitalization, introduced its AI-powered scent-to-language system, KAORIUM, at the THAMEEN Fragrance new product launch event. This pivotal event took place from June 5 to 11, 2025, at Selfridges department store in London, UK. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250703662207/en/ State of exhibition Global Expansion: KAORIUM Establishes UK Presence Europe leads the global fragrance market, with the UK projected to reach US$2.82 billion by 2033. Recognizing this, SCENTMATIC is rapidly expanding its international footprint. In May 2024, SCENTMATIC established its overseas subsidiary, KAORIUM, in London, appointing industry expert Ben Yanoushek as CEO. Official UK operations commenced on February 1, 2025, with the launch of its dedicated website: www.kaorium.com. KAORIUM Trialed at "Florentine Diamond" Launch Event The "Florentine Diamond" launch event for luxury brand THAMEEN Frag
Andersen Consulting samarbejder med Mercurial Minds om at forbedre mulighederne inden for digital transformation4.7.2025 01:10:00 CEST | Pressemeddelelse
Andersen Consulting udvider sit udbud af teknologidrevne løsninger med tilføjelsen af samarbejdsfirmaet Mercurial Minds (M.M.), et konsulentfirma inden for digital transformation, AI og IT med base i Pakistan. M.M. blev grundlagt i 2013 og tilbyder en række tjenester, der er designet til at hjælpe organisationer med at udvikle sig og skalere, herunder i forbindelse med deres digitale transformationsstrategi, AI-tjenester, it-rådgivning og udvikling af robuste mobil- og webbrugeroplevelser. Firmaet leverer end-to-end-løsninger – udformning af datadrevne køreplaner, udvikling af intelligent automatisering og levering af sikre mobil- og weboplevelser, der kan skaleres – skræddersyet til virksomheder, der ønsker at forbedre sine forbindelsesmulighederne og opnå indsigter i realtid. M.M. betjener en bred vifte af brancher med fokus på finans, telekommunikation og andre dataintensive sektorer. "Dette samarbejde er en katalysator," siger Nabeel Saiyer, administrerende direktør for M.M. "Vores
Global Tourism Surging Ahead of Economic Growth, With Visits to Hit 30 Billion by 20344.7.2025 01:00:00 CEST | Press release
The World Economic Forum report, in collaboration with Kearney and the Ministry of Tourism Saudi Arabia, predicts a significant uptick in tourist trips across the globeThe tourism sector will contribute $16 trillion to global GDP (more than 11% of the global economy) by 2034, according to World Travel & Tourism Council estimates (WTTC)India and China will be responsible for more than 25% of all outbound travel by 2030 The World Economic Forum has today published a new report forecasting that the travel and tourism industry is projected to serve 30 billion tourist trips by 2034. Travel and Tourism at a Turning Point: Principles for Transformative Growth, produced in collaboration with Kearney and the Ministry of Tourism Saudi Arabia, reveals a projected $16 trillion contribution to global GDP by the same year—representing more than 11% of the total world economy, according to World Travel & Tourism Council estimates. The report also found that the sector is expanding 1.5 times faster th
The 2025-2026 World Branding Awards Animalis Edition Honouring Leading Pet and Animal Brands Globally3.7.2025 21:00:00 CEST | Press release
The 2025-2026 World Branding Awards Animalis Edition marked its fifth instalment, bringing together leading pet and animal brands from all around the world. These brands were celebrated for their outstanding achievements, earning recognition as National, Regional, and Global Winners. The awards ceremony, held at Vienna's prestigious Hofburg Palace, welcomed winners across diverse categories, including pet food, retail, wellness, pet exhibitions, and aquatic products. Mounia Berrada-Gouzi expertly hosted the evening, which culminated in a grand celebration of brand excellence. “The Animalis Edition of the World Branding Awards recognises brands that have achieved the highest distinction—genuine recognition in the hearts and minds of consumers. Tonight, we honour those whose names resonate globally, whose values inspire loyalty, and whose presence defines excellence in the pet and animal industry,” said Richard Rowles, Chairman of the World Branding Forum. Out of over 950 brands nominate
Venture Global Announces 20-Year Sales and Purchase Agreement with PETRONAS3.7.2025 14:59:00 CEST | Press release
Today, Venture Global, Inc. (NYSE: VG) announced the execution of a new 20-year Sales and Purchase Agreement (SPA) with PETRONAS LNG Ltd. (PLL), a subsidiary of the Malaysian state-owned oil and gas company, PETRONAS. Under the terms of the SPA, PETRONAS will purchase 1 million tonnes per annum (MTPA) of liquefied natural gas (LNG) from Venture Global’s third facility, CP2 LNG, for 20 years. This builds upon Venture Global’s existing agreement with PETRONAS for 1 MTPA of LNG supply from Plaquemines LNG. PETRONAS, a world-class partner in the LNG industry, joins other CP2 LNG customers in Europe, Asia and the rest of the world in a strategically important project to global energy supply and security. To date, approximately 10.75 MTPA of the 14.4 MTPA nameplate capacity for CP2 Phase One has been sold. About Venture Global Venture Global is a long-term, low-cost provider of U.S. LNG sourced from resource rich North American natural gas basins. Venture Global’s business includes assets ac
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom