Understanding DORA – What it means for your Cyber Resilience Strategy

Objective:

To provide NI cybersecurity firms with an overview of the EU Digital Operational Resilience Act (DORA), including its relevance, key requirements, and potential opportunities for the sector in supporting in-scope financial entities in the EU with compliance.

Who should attend:

• Cybersecurity product and service providers in NI;
• Compliance and risk professionals within the local cyber sector; and
• Tech companies exploring opportunities in regulated sectors.

What you’ll learn:

• What is DORA? Background and policy drivers.
• Who does it apply to and how? (overview of in-scope EU financial entities and ICT third parties)
• Core pillars of DORA:

ICT risk management

Incident reporting

Digital operational resilience testing

Third-party risk and oversight

• What this means for NI cybersecurity product and service providers.
• How NI cybersecurity firms can position themselves as strategic partners to DORA-regulated entities.

Contributors:

• Russell Jones, Senior Associate, Finance, A&L Goodbody Northern Ireland LLP
• Carrie McMeel, Senior Associate, Litigation, , Senior Associate, Finance, A&L Goodbody Northern Ireland LLP
• Simon Whittaker, Chair of NI Cyber Steering Committee and Head of Cyber Security at Vertical Structure, an Instil company.