Original publication date: July 30, 2024. Since this blog post was published, the final versions of the RTS and ITS have been released. You can find...
DORA Requirements Become More Concrete: Further RTS and ITS Published
read more
DORA
Navigating DORA: Delvag's Successful Journey from Gap Analysis to Compliance
A cyberattack on an insurance company is far worse than just a technical problem: in addition to the breakdown of central IT systems, there is also...
Our 3 Key Takeaways from the BaFin Workshop on the DORA Register of Information
Original publication date: March 10, 2025. Since the publication of this blog post, BaFin has postponed the deadline for submission from April...
DORA News: Deadline for Information Registers, Lift of German Supervisory Requirements for IT in Financial Institutions
Original publication date: January 14, 2025. Since the publication of this blog post, BaFin has postponed the deadline for submission from April 11...
DORA Countdown: One Month Left Until the Deadline
DORA, the Digital Operational Resilience Act, will fully apply as of 17 January 2025. We have summarized everything you need to know about the EU regulation, preparation and best practices from our news blog.
"DORA: How the Next Wave of Requirements Is Hitting the Payment Card Industry": usd Experts on Stage at the 2024 PCI SSC Europe Community Meeting
Christopher Kristes, Head of Security Audits & PCI and member of the Executive Board at usd AG, and Dr. Christian Schwartz, Head of InfoSec in...
DORA Deep Dive: Reporting of ICT-Related Incidents
The Digital Operational Resilience Act (DORA) requires major ICT-related incidents to be reported to the German Federal Financial Supervisory...
Information Security in the Financial Sector: How Frankfurter Sparkasse is Tackling the Mammoth Task
The digital transformation in the financial sector has created new areas of attack for cyber criminals and therefore significant risks for...
NIS-2: The Most Important Takeaways from the German Implementation Act
The law implementing the NIS-2 Directive aims to transpose the requirements of the European NIS-2 Directive into the German legal system. On May 7,...
DORA Deep Dive: Threat-Led Penetration Testing (TLPT)
The Digital Operational Resilience Act (DORA) will apply as of January 17, 2025. In addition to routine operational resilience testing, DORA will...
Cloud Revolution in Regulated Industries: Opportunities, Challenges and Risks
As in all regulated industries, banks, insurance companies and capital management companies are undergoing a transformation through the increasing...
Setting off for DORA – Your Preparation in 3 Steps
DORA, the Digital Operational Resilience Act, is currently keeping the entire European financial sector on tenterhooks. The European Commission's...