Digital Operational Resilience Act (DORA) – Regulatory Framework and Impact on Compliance

To order your licenses, please send us a request (See action button “customized training”). You will receive the steps to follow. E-Learning accessible for a maximum of 12 weeks from the signing of the order form.

This introduction training is designed for professionals within the financial sector. It aims to impart an understanding of the Digital Operational Resilience Act (DORA) and its pivotal concepts, such as ICT risk management, security measures, business continuity planning, incident management, resilience testing, third-party risk management, and information sharing.

By the end of this training, participants will:

• Gain a general understanding of the Digital Operational Resilience Act (DORA) and its significance within the EU financial regulatory framework
  

• Be introduced to the key requirements of DORA in ICT risk management, security measures, business continuity, and incident management
  

• Get an overview of resilience testing concepts, including basic testing requirements and advanced approaches such as Threat-Led Penetration Testing (TLPT)
  

• Develop awareness of third-party ICT risk management and the role of information sharing in strengthening operational resilience
  

• Be able to identify the implications of DORA for their organization and understand the next steps towards compliance
  

Module 1 - Introduction to DORA

• Objectives and scope of DORA
  

• Proportionality principle and its application
  

Module 2 - ICT Risk Management

• Gain an understanding of the DORA regulatory framework and its application in real-world scenarios
  

• Gain high level knowledge in ICT risk assessment, mitigation strategies, and security measures
  

• Introduce business continuity, disaster recovery planning, and incident management aligning with DORA
  

Module 3 - Incident Management

• Gain an understanding of the DORA regulatory framework and its application in real-world scenarios
  

• Master the intricacies of incident management, classification and reporting in alignment with DORA
  

Module 4 - Resilience Testing

• Gain an understanding of the DORA regulatory framework and its application in real-world scenarios
  

• Learn about plan basic and advanced resilience tests tailored to DORA standards, including penetration testing and red teaming
  

Module 5 - ICT Third-Party Risks

• Gain an understanding of the DORA regulatory framework and its application in real-world scenarios
  

• Understand the ICT Third Party Governance and Risk Management
  

• Understand how to manage the DORA ICT Third Party Register
  

Module 6 - Information Sharing and Conclusions

• Develop a clear understanding of the DORA regulatory framework, focusing on its key principles and practical application in real-world scenarios
  

• Recognise the strategic importance and benefits of effective information sharing in strengthening operational resilience
  

• Gain a concise and comprehensive recap of the DORA regulation as covered throughout this training programme
  

+/- 1.5 hour (the license remains active for 6 months).

Professionals within the financial sector whose roles involve ensuring compliance with regulatory standards, managing risk, or auditing processes related to information and communication technology (ICT) and operational resilience
This diverse audience reflects DORA's wide-reaching impact across different facets of the financial industry, underscoring the need for a broad understanding of its requirements and implications for digital operational resilience