Dora is the unification of rules and recommendations for the financial sector in Europe into one consolidated regulation. The essence of Dora is consistency for banks, pension funds, insurance companies and intermediaries, e-money management companies, cryptographic service providers, securities, rating agencies, etc.
ICT service providers to the financial sector are supposed to be supervised as well.
Key regulations required to meet:
-Analysis of security risks of the ICT environment
-The reporting of ICT incidents
-Perform risk-based testing of the ICT environment
-Audit the security of the ICT environment
-Conduct periodic vulnerability testing of the ICT environment
-Severe penalties for ICT non-compliance
Every company should periodically review its solutions, perform a security risk analysis of its ICT environment (just as we annually review the technical condition of our car, ventilation, air conditioning and the technical condition of our facility). Taking care of the security of your IT environment should be a habit and its scale should be adjusted to your organization.
We assist in the implementation of the above.
Reference Materials:
https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A52020PC0595