Context
The EU Digital Operational Resilience Act (DORA) is in force since January 16, 2023. It aims at harmonising and streamlining financial entities’ conduct of ICT risk management. DORA’s origin is in the increased risks arising from the EU financial services sector’s reliance on ICT, as well as in the lack of harmonised EU-level rules on digital operational resilience and the consequent fragmented and inconsistent rules at EU member state level. Financial entities in the European Union (EU) and their critical ICT providers must be ready to comply with DORA by January 17, 2025.
Objectives
At the end of the training session, you will:
- be able to understand how your entity may be impacted by DORA from a regulatory, organizational, and operational/technical perspective
- have some practical advice on how to comply in a timely manner with the new requirements brought by DORA
Content
- DORA’S backgroung
- DORA’S five pillars
- ICT risk management
- ICT related incident managemen, classification and reporting
- Digital operational resilience testing
- Managing of ICT third party risk
- Information sharing arrangements
- Upcoming technical standards – what to expect?
- How to comply?
- Risk management framework
- Incident Management process
- ICT third party
- IT “literature” (policies, procedures and living records)
- Focus on some specific technical aspects of DORA
-
- ICT risk management
- Assessment
- Treatment
- Action plan
- Incident management
- Process
- Incident classification
- Monitoring
- Business Continuity Plans (BCP) concept
- ICT risk management
Duration
3 hours
Language
French
Target
- Members of governing/management bodies of regulated entities
- Compliance officers and other employees
Price
400€
For further information, please contact us by e-mail at institute@arendt.com.