DORA Sanduhr

DORA Countdown: One Month Left Until the Deadline

17. December 2024
Financial Sector & Compliance | News

DORA, the Digital Operational Resilience Act, will fully apply as of 17 January 2025. The EU regulation requires that all regulated financial institutions implement the listed requirements for internal processes and systems and ensure that their third-party ICT service providers do the same. The approaching deadline in addition to the regular year-end business is most likely causing sleepless nights for some information security managers. They are asking themselves: How can they make the most of the short time left until 17 January 2025? Which steps are practical “quick wins”? What measures are “must-haves” for the first supervisory review?

To help you find the right answers, we have summarized everything you need to know from our news blog:

Everything you need to know in compact form

Digital Operational Resilience Act (DORA): The 7 Most Important Questions

DORA & NIS-2

NIS-2 and DORA: Why Two Pieces of EU Cybersecurity Legislation?

Thread-Led Penetration Testing (TLPT)

DORA Deep Dive: Threat-Led Penetration Testing (TLPT)

RTS & ITS

DORA Requirements Become More Concrete: Further RTS and ITS Published

Obligation to report ICT-related incidents

Person holds a telephone to the reader and next to it is the title of the article.

DORA Deep Dive: Reporting of ICT-Related Incidents

We take the next steps with you

DORA

Are You Ready for DORA? If Not, Here’s 5 Tips on What to Consider during Planning

Setting off for DORA – Your Preparation in 3 Steps

Do you have further questions about DORA or need specific support with implementation in your company? Get in touch. We will be happy to assist you.

Best Practices | Digital Operation Resilience Act (DORA) | Digital Operational Resilience Act | DORA | DORA | DORA implementation | DORA preparation | DORA requirements | DORA-Anforderungen | EU Regulation | EU-Verordnung | ICT | IKT | Risikomanagement | Risk Management

Also interesting:

Security Advisories on PRTG Network Monitor

Security Advisories on PRTG Network Monitor

Jan 23, 2026

The pentest professionals at usd HeroLab examined the PRTG Network Monitor web application as part of web application pentests and identified several vulnerabilities. Two vulnerabilities relate to cross-site scripting (XSS), which allows attackers to inject JavaScript...

PCI Secure Software Standard v2.0: What You Should Know

PCI Secure Software Standard v2.0: What You Should Know

Jan 20, 2026

On 15 January 2026, the PCI Security Standards Council (PCI SSC) released version 2.0 of the PCI Secure Software Standard. This is the first comprehensive revision since the introduction of the standard. Insight into the Key Changes The new version streamlines the...

Part-IS and ISO 27001: How to Leverage Synergies for Your Compliance

Part-IS and ISO 27001: How to Leverage Synergies for Your Compliance

Jan 14, 2026

On 22 February 2026, the EU Regulation Part-IS for aviation organizations will come into force. They must manage information security risks in a way that best protects civil aviation safety. Many already rely on an ISMS according to ISO 27001 – but is that enough for...

Categories

Categories

#BeAware Cloud Security Customer Stories  | Cyber Defence  |  Cybersecurity Tips  |  Events & Community Financial Sector & Compliance  |  Life@usd  |  News  |  PCI -Tipps  |  PCI News Pentest Insights  |  Security Audits  |  Security Research  |  usd Updates