The European financial sector faces increasing cyber threats and operational disruptions. Consequently, the sector is now subject to the Digital Operational Resilience Act (DORA). This article, the second part of our essential guide, follows our initial overview of DORA in “Digital Operational Resilience Act: Essential Guide – Part 1”. We now delve into the specific technical cybersecurity requirements and controls mandated by DORA.

The Digital Operational Resilience Act (DORA), effective January 2025, imposes significant cybersecurity obligations on more than 21,000 EU financial institutions. It demands robust technical safeguards, rapid incident reporting (within four hours), structured risk management, and third-party oversight. This technical guide breaks down DORA’s compliance parameters and offers actionable implementation strategies for the 2025 deadline.

A Practical Guide to Attack Surface Management aims to provide practical tips and best practices to help organisations implement a comprehensive and effective attack surface management program. Attack Surface Management is a security practice aimed at identifying, managing, and mitigating potential attack vectors in an organisation’s IT environment.

A robust Supply Chain is the lifeblood of any successful business. However, this intricate web of suppliers, vendors and partners presents a significant vulnerability: security breaches. Recent high-profile attacks and alarming statistics underscore the urgent need for comprehensive Supply Chain Security management.

In the dynamic digital landscape of 2025, the drumbeat of cyberattacks continues to intensify, pushing regulatory bodies to fortify critical sectors. The European Union, recognising the existential threat posed to its financial stability, has introduced the Digital Operational Resilience Act (DORA).

When a domain name is registered, ICANN requires that personal information including your full name, address, phone number, and email address be provided. This information is then made visible to the public via a WHOIS lookup.