In this latest episode of the Privacyespresso series, we continue our deep dive into building a unified compliance strategy within the EU regulatory landscape, focusing on DORA, the Digital Operational Resilience Act.
Joined by Michaela Holíková, expert at Rowan Legal, PrivacyRules Czech law firm member, we explored how DORA compares to NIS2, what makes it a game-changer for financial entities, and why ICT service providers must take note.
Key takeaways :
– DORA vs. NIS2: While both frameworks address cybersecurity, DORA goes further, introducing operational resilience mandates for financial institutions.
– ICT supply chain challenges: Service providers cannot ignore DORA, contracts must align with strict security, reporting, and risk management requirements.
– Critical ICT service providers: Future designations will bring additional obligations, organizations must prepare now to avoid compliance pitfalls.
– Regulatory complexity: Companies falling under both DORA and NIS2 must carefully navigate overlapping requirements, expert guidance is key.
DORA is reshaping cybersecurity expectations in the financial sector, and compliance is not just about ticking boxes, it’s about resilience in an era of growing cyber threats.
Stay tuned for the next episode, where we tackle another critical EU framework in this ongoing series!
Listen to the full episode : https://bit.ly/4hTetJL