DORA / IT resilience

The Digital Operational Resilience Act (DORA), together with the related series of Regulatory Technical Standards and Implementing Technical Standards, came into application on 17 January 2025, marking a turning point in how EU financial entities address operational resilience and cybersecurity standards. However, EU entities that are in scope of DORA, including banks, investment firms, investment fund managers and insurance companies, must realise that compliance with DORA is an ongoing process, not just a one-off effort, and that the workload required to maintain this is significant for any financial entity, including those relying on an IT outsourcing model.

Thus, it is vital to have clearly defined roles, processes and protocols that are accompanied by precise planning and execution. To ease this regulatory burden, Arendt has a range of services to assist clients on either an ongoing or ad hoc basis, these services being delivered by a strong team of regulatory and IT consultants, assisted by lawyers.

Our DORA solutions

Ease your DORA reporting obligations using our online RoI reporting solution.

DORA Register of information

Ensure detailed and comprehensive monitoring of your DORA compliance over time.

DORA Control Plan
We provide support in:
Advice & assessment
  • DORA compliance review
  • IT risk assessment according to ISO standards
Implementation & execution
  • Documentary alignment support, including drafting or reviewing strategies, policies, procedures, criticality assessments or prior risk assessments and exit strategies
  • CSSF submissions in the event of new or amended uses of ICT services provided by ICT third-party service providers supporting a critical or important function
  • Review of contracts with ICT third-party providers by Arendt & Medernach lawyers
  • ICT risk management support mandate
  • ICT third-party management support mandate
  • ICT-related incident support
  • Business impact analysis and BCP support
  • Register of information (RoI) completion (see our RoI solution)
  • Detailed DORA Control Plan delivery (see our DORA Control Plan tool)

Yann Fihey

Partner ARC

Bénédicte d’Allard

Senior Manager

DORA – Smooth sailing within DORA Compliance

pdf6 MB

Download