DORA: The new regulation to protect banks, fintechs and investment firms from cyberattacks

All financial institutions – including banks, fintech companies and crypto asset providers – are being called to comply with the EU’s new Digital Operational Resilience Act (DORA) by 17 January 2025 when it comes into effect.

Dubbed the EU’s most ambitious attempt to regulate cyberattacks to date, the aim is to ensure the safety and resilience of the entire European financial sector in conditions of rapid digital transformation.

Essentially, the new regulations aim to create a robust framework to govern ICT (information and communication technologies) in the financial sector, to prevent serious business disruptions.

The official DORA website provides more insight: “The Digital Operational Resilience Act (Regulation (EU) 2022/2554) solves an important problem in the EU financial regulation. Before DORA, financial institutions managed the main categories of operational risk mainly with the allocation of capital, but they did not manage all components of operational resilience. After DORA, they must also follow rules for the protection, detection, containment, recovery and repair capabilities against ICT-related incidents. DORA explicitly refers to ICT risk and sets rules on ICT risk-management, incident reporting, operational resilience testing and ICT third-party risk monitoring. This Regulation acknowledges that ICT incidents and a lack of operational resilience have the possibility to jeopardise the soundness of the entire financial system, even if there is "adequate" capital for the traditional risk categories.”

For more information, visit

Read More

Nicodemos Damianou discusses fintech landscape with Quadcode
Andreas Petsas: The physical and personal element in banking will always be needed
Eurobank is getting ready to 'make its mark' on Hellenic Bank
Bank of Cyprus eyeing Athens Stock Exchange return as it "considers all options"
Cyprus had highest concentration of firms with cross-border investment activity in 2023
Omri Nir: Prop trading a key trend for brokerage industry in next couple of years
Moody's upgrades Bank of Cyprus' long-term deposit ratings to Baa1
Liquidator figures outline the anticipated outcome as Laiki’s shares in the Bank of Cyprus are liquidated
Assets under Management of Collective Investments at €9.1b in Q1
John Georgoulas: Cyprus’ technology sector has huge potential but needs more help from state & universities