1. The AI Gold Rush: Why Investors Are Pouring Money into the AI Economy
  2. How One Data, an AI software company, secured its Kubernetes environment using Kasten K10.
  3. Nvidia Unveils Ada Lovelace GPU Architecture, OVX Systems, and Omniverse Cloud
  4. AWS Announces Significant Bedrock Update: Expanded AI Models and Improved Flexibility for Users
  5. Combining AI and Human Expertise to Drive Growth in Banking
  6. Maximizing Security in Microsoft Azure: Advice for IT Administrators
  7. How to strike a balance between digital transformation and day-to-day operations
  8. VMware introduces developer, data, and security services for sovereign clouds.
  9. Cohesity integrates Intel’s confidential computing capabilities into Cohesity Data Cloud.
  10. How to Automate Your Infrastructure Management
  11. AI Video Platform Synthesia Secures $90M in Series C Funding, Backed by Nvidia
  12. Future-proof your business with cloud storage that’s sustainable for the planet
  13. Improving Your IT Infrastructure: The Right Time and Way to Integrate Refurbished Hardware
  14. Mining Companies Explore Repurposing Unused GPUs for HPC and AI Applications
  15. A Revenera survey reveals that insights into product usage drive the creation of better roadmaps.
  16. How Retailers Can Identify Fake AI
  17. Using Large Language Models to Predict Financial Markets
  18. The Future of Accounting: How AI is Revolutionizing Financial Operations
  19. Achieving successful digital transformation: Key lessons learned – from decisions to data.
  20. Sundar Pichai’s Interview Sparks Discussion on the Real Abilities of AI Chatbots
  21. Eseye: Ongoing Challenges in IoT Connectivity and Security
  22. Europe’s €200 Billion AI Investment: A Major Move for the Future
  23. Hammerspace Secures $56M to Redefine Data Orchestration
  24. Harnessing the Potential of Generative and Predictive AI in Marketing
  25. Apple scraps data protection tool for UK customers ChatGPT said: Apple cancels data protection tool for customers in the UK.
  26. AWS Brings the AI Heat: Project Rainier and GenAI Innovations Take the Lead
  27. Seamless Digital Strategy and Business Transformation
  28. GlobalData: Key Advances That Will Drive the Metaverse’s Success
  29. Shaping the Future of AI Systems at Meta
  30. VMware Introduces New Generative AI Tools and Strengthens Partnership with Nvidia
  31. The Alps Scientific Symposium Shines a Spotlight on AI’s Potential to Address Major Scientific Challenges
  32. Quantinuum Unveils Gen QAI: A Generative Quantum AI Framework
  33. Ververica Enhances Advanced Stream Processing Technology with the Launch of the ‘Powered By Ververica’ Program
  34. Turning Data Into Insight: Key Tips for Building a Strong Data Strategy
  35. SambaNova Unveils Next-Generation DataScale System
  36. IT leaders are increasingly opting for hybrid cloud strategies because of their flexibility, cost efficiency, and enhanced security.
  37. NSF Grants SDSC Funding for NAIRR Pilot Research on Nvidia’s DGX Cloud
  38. Cerebras Breaks Record in Molecular Dynamics with 1.1 Million Simulations per Second
  39. Edge SIM Introduced to Link IoT Devices with Cloud Providers Across 180+ Countries
  40. 5 Strategies to Optimize IT Projects
  41. Shaping Healthcare Workflows: The Impact of AI Agents Beyond Automation
  42. How Hyve Managed Hosting Guaranteed a Seamless Voting Experience at the National Television Awards
  43. A 30-Year Journey to Overnight Success: The Parallel Growth of AI and Quantum Computing
  44. Nvidia’s Compact Desktop AI Box with Powerful Unified GPU/CPU Memory
  45. The Future of AI in Medical Billing Auditing
  46. UK-based cloud consultancy Rebura has been acquired by global technology distributor Westcon-Comstor.
  47. Here are five strategies for parents to guide their children in using AI responsibly
  48. Intel Labs Unveils ‘Kapoho Point’ Board Powered by Loihi 2 Technology
  49. The Future of IoT in 2025: Digital Twins, Mesh Networks, Virtual Reality, and Beyond
  50. Transforming Insurance Premium Payments: From Legacy Systems to AI-Driven Solutions
  51. Nvidia Takes a New Approach to the Top500 List, Shifting Focus Away from GPUs
  52. N-able is growing its Technology Alliance Program to create a more open ecosystem designed specifically for Managed Service Providers (MSPs)
  53. How Sun Chemical achieved infrastructure cost savings of over 50% during acquisitions.
  54. Nurturing the Cycle of Innovation: The Role of HPC, Big Data, and AI Advancement
  55. Brian Cerchio of Losant: Unlocking the Full Potential of IoT
  56. Genesys Acquires Radarr Technologies to Enhance Customer Experience Integration
  57. 6 Common Mistakes CTOs Make When Leading Teams in the Early Stages of a Project
  58. The IT Support Guide: A Complete Resource for Understanding and Hiring IT Support for Your Business
  59. Why Content Professionals Should Fully Embrace AI Without Hesitation
  60. OpenAI Unveils New Initiative to Address Risks of ‘Superintelligent’ AI
  61. Creating custom document solutions with Fluent: A developer’s viewpoint.
  62. How AI and Quantum Computing Will Work Together: Insights from Quantinuum
  63. Raising the Bar: Why Quality and Service Excellence Are Essential for Success in Today’s Business World
  64. Google Cloud’s 2025 AI Trends: The Future of Search, Customer Experience, and Security
  65. NVIDIA GTC Highlights: The Future of Data Centers and Strategic Cloud Partnerships
  66. How AI is Transforming Scientific Research
  67. Minima and Inferrix Join Forces to Strengthen Security for Millions of Connected Devices
  68. Digital Transformation Approaches for CIOs of Midsize Enterprises
  69. The University of Texas at San Antonio has been awarded a $4 million grant by the National Science Foundation (NSF) to fund a cutting-edge neuromorphic computing initiative
  70. Is ChatGPT Losing Its Edge?
  71. NetApp has partnered with Google Cloud to enhance flexibility in cloud data storage.
  72. Countdown to Compliance: Getting the Financial Sector Ready for DORA and Responsible AI
  73. AI for Everyone: How Technology Can Promote Inclusivity
  74. DataQube Partners with NodeWeaver to Deliver Complete Edge Cloud Solutions
  75. IoT Fuels Digital Transformation
  76. NTT DATA and Google Cloud Strengthen AI Partnership Across the Asia Pacific Region
  77. Empowering IT leaders to drive business growth and future-proof the organization
  78. IT Systems in the Public Sector for Enhanced Operational Efficiency
  79. Luis Mirabal, Globalstar: How Satellite IoT Can Boost Efficiency and Cut Costs
  80. Oracle and AWS have teamed up to bring Oracle Database to the AWS cloud.
  81. The Great 8-bit Controversy in Artificial Intelligence
  82. Teradata will provide cloud analytics services to the Los Angeles Clippers and the Intuit Dome.
  83. Salesforce introduces Einstein Copilot for Tableau.
  84. Microsoft’s compact, palm-sized chip is paving the way for practical quantum computing, bringing this cutting-edge technology closer to reality than ever before.
  85. GigaIO’s New SuperNode Achieves Unprecedented AMD GPU Performance
  86. Google Playfully Pokes Fun at Nvidia’s Blackwell as It Eases TPU Competition
  87. HPE Acquires Pachyderm to Enhance Reproducibility in Machine Learning
  88. Revenera introduces a new monetization analytics dashboard.
  89. Variations in IT Service Providers Across Regions
  90. Over 40% of companies lose revenue due to technology downtime and cloud complexity.
  91. Kyndryl has partnered with Veeam to provide robust cyber resiliency solutions.
  92. GoodData announces a major update to FlexQuery, its groundbreaking analytics engine.
  93. aicas has introduced the Edge Device Portal, and is now accepting applications from pilot customers
  94. Ververica enhances its advanced stream processing technology with the launch of the “Powered By Ververica” program.
  95. AI Will Replace Jobs – And That’s a Positive Change
  96. Intel Discontinues Its ‘Blockscale’ Bitcoin Chip
  97. Generative AI Paving the Path for Local SEO
  98. How One Data Safeguarded Its Kubernetes Environment Using Kasten K10
  99. The Future of Cell Therapy: How AI is Paving the Way for New Advances
  100. Quantum and AI: Realistic Synergy or Just Hype?
  101. The Impact of Deep Learning on Finance
  102. Madoc Batters of Warner Hotels highlights that the most significant hurdle is driving meaningful change
  103. The world’s first bio-circular data center has been launched, using algae to generate energy
  104. The Growing Importance of Cybersecurity in the Age of Artificial Intelligence
  105. AI drives a nearly 30% rise in IT modernization spending, yet companies are unprepared for the data demands.
  106. Marc Andreessen Claims AI Will Be the Key to Saving the World
  107. 5 Common Digital Transformation Challenges and How CIOs Can Address Them
  108. Vonage and AWS utilize communication and network APIs to provide innovative solutions
  109. My micro wave happy sunday from Expand is too small to fit Expand.
  110. Embracing the Digital Revolution: Transforming Processing Services and Evaluating the Future
  111. Google, OpenAI, Microsoft, and Anthropic Join Forces to Launch the Frontier Model Forum for Responsible AI
  112. Fewer than 20% of IT professionals believe that cloud infrastructure fully meets their needs
  113. AI-powered clouds for achieving business goals and optimal results
  114. The DCIM software market is projected to grow to $3.63 billion by 2029
  115. Nokia Enhances IoT Capabilities for Industrial Edge Applications
  116. In EMEA, half of cloud expenses are spent on fees, yet the majority of businesses still plan to expand their cloud capacity
  117. ByteDance’s Strategy for AI Chip Access Raises Concerns About Export Control Effectiveness
  118. Particle Tachyon: Bringing the Power of Smartphones to IoT
  119. Sam Altman Confirms GPT-5 Won’t Launch This Year in Reddit AMA
  120. Google Unveils TPU v5e AI Chip Following Controversial Background
  121. Qlik introduces Data Flow to speed up the Data-to-Decisions process in Qlik Cloud Analytics.
  122. The Potato Principle: Why It’s Important for Everyone to Understand
  123. Generative AI is becoming a standard feature in cloud business models, with Azure leading the charge.
  124. Fire Safety Company Resolves Customer Service Challenges with Sabio’s AI-Driven Analytics Solution
  125. Challenges and Approaches for CIOs in the Digital Economy
  126. Leveraging AI in Property Management
  127. ROI for IoT and Edge Computing on the Rise, with Open Source Playing a Key Role
  128. A Decade-Long Market Analysis and Forecast for Liquid Cooling
  129. Nvidia has unveiled new enterprise reference architectures designed to help businesses build AI-driven operations, or “AI factories.”
  130. Transforming Finance: How Generative AI is Enhancing Operational Efficiency
  131. The Digital Operational Resilience Act: Compliance is Just the Beginning for Banks
  132. SAS extends its hosted managed services to AWS
  133. Operational Risks: Why the Banking Sector Remains Cautious About AI

The Digital Operational Resilience Act: Compliance is Just the Beginning for Banks

12/06/2023
|
No Comments
|
Infrastructure

The EU’s Digital Operational Resilience Act (DORA) regulation came into full effect on January 17, 2025, two years after its adoption. Its primary goal is to enhance the financial sector’s resilience against digital risks like cyber threats and technology failures.

DORA provides a comprehensive framework requiring financial institutions to implement strong operational resilience measures, ensuring they are well-prepared to handle ICT (Information and Communications Technology) disruptions. Key aspects of the regulation include Risk Management, Incident Reporting, Testing and Audit, and Third-Party Risk Management.

So, what does this mean for businesses, and what should they focus on?

Tiernan Connolly, MD of Cyber and Data Resilience at Kroll, explains that DORA requires organizations to identify their critical business processes and link them to the technology assets and third parties that support them. This helps businesses spot critical dependencies and risks, set up real-time monitoring, and regularly test these connections. He also points out that DORA will increase transparency in incident reporting, standardize testing methods like red teaming, and tighten third-party risk management protocols, pushing businesses to adopt proactive resilience strategies. This, in turn, will reduce long-term risks and improve overall digital resilience.

Looking ahead, Connolly notes that the upcoming EU Cyber Resilience Act, set for full implementation by 2027, will focus on building robust security measures into the development and post-sale processes of digital products. This will complement DORA by holding vendors accountable for securing the products used by enterprises.

Joe Vaccaro, head of Cisco ThousandEyes, highlights DORA’s expansion to include the ICT suppliers financial services firms rely on to deliver services. In today’s interconnected world, businesses can’t simply reboot the Internet, so they need to manage disruptions more effectively. Vaccaro stresses the importance of understanding hidden dependencies, like third-party services and their cloud providers, to ensure continued service delivery.

For financial services, he notes the need to identify and map third-party dependencies and establish ongoing processes to monitor those connections. This focus on digital resilience applies to all industries, not just finance, and should be addressed at the boardroom level.

Andre Troskie, EMEA field CISO at Veeam, advises that businesses ensure their third-party partners have strong risk management processes. He also recommends renegotiating service level agreements (SLAs) with third-party providers to ensure compliance with DORA’s requirements.

Richard Lindsay, principal advisory consultant at Orange Cyberdefense, points out that non-compliance could lead to severe consequences, including fines of up to 1% of global daily turnover and over €1 million for individual senior leaders. These penalties can emphasize the importance of cybersecurity and compliance to the board. Lindsay further suggests that most compliance requirements can be met by investing in cyber risk assessments, incident reporting, resilience testing, and governance across frameworks.

Desre Sheen, head of UK Financial Services Consulting Practice at Capgemini, says that while financial institutions are meeting DORA’s minimum compliance requirements, the real challenge lies in maintaining and evolving a resilience culture. Plans must remain flexible as critical business services may change over time, and not every firm will interpret regulations the same way.

John Smith, Veracode EMEA CTO, emphasizes the need for a comprehensive digital resilience testing program that includes various methodologies to assess security and resilience. Regular vulnerability scans, open-source risk analysis, and threat-led penetration testing are all critical components for meeting DORA’s requirements. He also stresses the importance of training staff at all levels in ICT security awareness, secure coding practices, and operational resilience.

Tim Wright, partner and technology lawyer at Fladgate, acknowledges that smaller firms face challenges due to resource limitations and the complexity of DORA’s 500+ requirements. He suggests that firms struggling to meet full compliance should demonstrate good faith efforts and maintain communication with regulators, as authorities are likely to focus enforcement on major breaches. Despite the initial implementation costs, Wright believes that long-term benefits like enhanced resilience and better risk management will outweigh the costs. DORA is also expected to create a surge in demand for cybersecurity professionals, offering career opportunities in the financial sector.

Bob Wambach, VP of Product Portfolio at Dynatrace, warns that compliance alone isn’t enough for financial services firms. To be truly prepared, organizations need to go beyond meeting the minimum requirements of DORA and focus on creating a culture of resilience. This includes continuous testing, real-time anomaly detection, and prioritizing the ability to respond to disruptions quickly.

Andrew Rose, CSO at SoSafe, notes that many financial services and ICT organizations have already developed the cyber maturity required to comply with DORA. However, for previously unregulated sectors, such as crypto exchanges and peer-to-peer lending platforms, DORA introduces a new level of control requirements. Rose emphasizes that DORA’s controls are necessary and timely, especially after significant losses in the crypto industry. He also highlights that most cyber breaches result from human error, and a strong compliance effort must be paired with training and awareness programs to truly protect against future risks.

In conclusion, while DORA represents a significant shift in the regulatory landscape for the financial sector, it also presents a broader opportunity for businesses to build more resilient, secure systems capable of withstanding digital disruptions. Compliance is just the first step; continuous effort, proactive testing, and a strong culture of resilience are essential for long-term success.

0 Comments

Leave a Comment