1220 Pro

DORA — Pro · Digital Operational Resilience Act

EU regulation on digital operational resilience in the financial sector. ICT risk, third-party management and incident reporting.

DORA applies from 17 January 2025 and brings ICT risk management for the EU financial sector into one regulation. This track covers who is covered, the five-pillar structure, third-party management and operational resilience.

Content

What is DORA?

Background and scope.

Why an EU regulation?
10 min
Who is covered?
8 min
The five pillars
7 min
Quiz: What is DORA?
5 min
Video briefing: DORA Pro
8 min
Reflection: DORA in your organisation
18 min

Incident reporting and testing

Pillars 2 and 3 in practice.

Classifying incidents
10 min
TLPT — Threat-Led Penetration Testing
10 min
Internal testing and continuous resilience
8 min
Quiz: Incident reporting and testing
5 min

Third-party governance

Pillar 4 in practice.

ICT provider register
8 min
Contracts and exit plans
8 min
Direct supervision of CTPPs
8 min
Quiz: Third-party governance
5 min
Certification basis: DORA Pro
12 min

Duration: 1 h 10 min
Difficulty
Modules: 3
Lessons: 15
Certificate: Silver

Have an account? Log in