ISACA Provides Guidance Around EU’s Proposed Digital Operational Resilience Act
Reforms following the 2008 financial crisis helped strengthen the resilience of the financial sector, but did not fully address digital operational resilience. The European Union’s recently released Digital Operational Resilience Act (DORA) draft is designed to provide digital operational resilience rules for EU financial institutions, and ISACA provides guidance on this proposal in its new white paper, Digital Operational Resilience in the EU Financial Sector: A Risk-Based Approach .
When finalized, DORA will enact rules for financial services system operators like investment firms, credit institutions, trading venues and electronic money institutions to ensure these systems’ stability and resilience to cyber incidents. Digital Operational Resilience in the EU Financial Sector outlines the objectives and legal basis for DORA, as well as its information and communication technology (ICT) requirements around risk management, information and cybersecurity, incident reporting, testing, and oversight of third-party service providers, some of which include:
- Set up and maintain resilient ICT systems and tools that minimize the impact of ICT risk.
- Have an ICT risk-management framework that includes strategies, policies, procedures, ICT protocols and tools necessary to effectively protect all relevant physical components and infrastructures from risk, such as damage and unauthorized access or usage.
- Test the ICT business continuity policy and the ICT disaster recovery plan at least yearly, and after substantive changes to the ICT systems.
- Include relevant provisions on accessibility, availability, integrity, security and protection of personal data, and guarantees for access, recover and return in the case of failures of the ICT third-party service providers in contracts that govern the relationship with third-party providers.
“The requirements laid out in DORA to identify all sources of ICT risk on a continuous basis and mandate an annual review of ICT risk management frameworks and review after a major incident, audit or testing are a step in the right direction,” says Chris Dimitriadis, ISACA chief global strategy officer. “However, to further strengthen the act, ISACA encourages provisions ensuring that ICT risk management plans go beyond being a compliance exercise by embedding governance responsibility within the management body, as well as requiring continuous training and ICT awareness of senior management and staff and independent testing performed by testers who are certified.”
During this period in which the DORA regulation is under consideration in the European Parliament and Council of the EU, ISACA’s EU Task Force is engaging with policy makers and sharing feedback. The final version of the regulation is expected in an estimated 18-24 months.
“ISACA is recognized among policy makers as an independent source of expertise on cybersecurity issues. The variety of backgrounds and experience of our members, reflected in the EU Task Force, have been welcomed by policy makers who have valued our contributions to the debate,” says Emily Bastedo, ISACA director for global government relations and public affairs.
To download a complimentary copy of Digital Operational Resilience in the EU Financial Sector, visit https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004L1sxEAC. Additional publications that may be helpful for financial entities as they prepare for DORA include ISACA’s Risk IT Framework, 2nd Edition; Risk IT Practitioner Guide, 2nd Edition ; and IT Risk Fundamentals Study Guide. Other IT risk-related resources can be found at www.isaca.org/resources/it-risk.
About ISACA
For more than 50 years, ISACA® (www.isaca.org) has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.
Twitter:
www.twitter.com/ISACANews
LinkedIn:
www.linkedin.com/company/isaca
Facebook:
www.facebook.com/ISACAGlobal
Instagram:
www.instagram.com/isacanews
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20211014005760/en/
Contact information
Emily Van Camp, evcamp@isaca.org, +1.847.385.7223
Kristen Kessinger, communications@isaca.org, +1.847.660.5512
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Peru Holds a Ribbon Cutting Ceremony at Its Pavilion at Dubai Expo and Wins 4 World Travel Awards22.10.2021 20:15:00 EEST | Press release
The Dubai World Expo took place in an electrifying musical atmosphere where thousands of attendees were captivated by the variety of artistic, musical and cultural expressions that characterize the different regions of Peru. All this was part of the inauguration of the Peru Pavilion at the most important cultural event in the world. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211022005454/en/ Peru inaugurated its Pavilion at Expo 2020 Dubai and received four awards from the “Tourism Oscars.” (Photo: Business Wire) The Peru Pavilion was inaugurated by the Commissioner General for Peru at the Expo, Amora Carbajal, and Najeeb Mohammed Al-Ali, Executive Director of Expo 2020 Dubai, in front of official representatives from different country pavilions. “The purpose of the pavilion is to offer a complete learning experience about ancient Peruvian wisdom throughout the visit, communicating the importance of the heritage, biodive
Schlumberger Announces Third-Quarter 2021 Results22.10.2021 13:50:00 EEST | Press release
Schlumberger Limited (NYSE: SLB) today reported results for the third-quarter 2021. Third-Quarter Results (Stated in millions, except per share amounts) Three Months Ended Change Sept. 30, 2021 Jun. 30, 2021 Sept. 30, 2020 Sequential Year-on-year Revenue* $5,847 $5,634 $5,258 4% 11% Income (loss) before taxes - GAAP basis $691 $542 $(54) 28% n/m Net income (loss) - GAAP basis $550 $431 $(82) 28% n/m Diluted EPS (loss per share) - GAAP basis $0.39 $0.30 $(0.06) 30% n/m Adjusted EBITDA** $1,296 $1,198 $1,018 8% 27% Adjusted EBITDA margin** 22.2% 21.3% 19.4% 90 bps 280 bps Pretax segment operating income** $908 $807 $575 12% 58% Pretax segment operating margin** 15.5% 14.3% 10.9% 120 bps 460 bps Net income, excluding charges & credits** $514 $431 $228 19% 126% Diluted EPS, excluding charges & credits** $0.36 $0.30 $0.16 20% 125% Revenue by Geography International $4,675 $4,511 $4,210 4% 11% North America* 1,129 1,083 1,034 4% 9% Other 43 40 14 n/m n/m $5,847 $5,634 $5,258 4% 11% *Schlumbe
Disruptive.Asia: Huawei's Ryan Ding and Peng Song Discuss How Operators Can Leverage Connectivity to Unlock New Growth22.10.2021 13:30:00 EEST | Press release
Disruptive.Asia reported that Ryan Ding and Peng Song stressed the growing importance of connectivity in driving industry growth and generating value amid a rapidly evolving landscape at the 7th Ultra-Broadband Forum (UBBF 2021) in Dubai, which is jointly hosted by the UN Broadband Commission and Huawei. Ding, Executive Director of the Board and President of the Carrier Business Group, Huawei, said that connectivity has made it possible to innovate, especially in a digital age where increasing efficiency has become paramount. The pandemic has also ushered a paradigm shift in connectivity, as homes turned into multi-functional centers for education, work, and business. It became increasingly clear that connectivity not only drives digital economies forward but also maintains the functioning of society. Peng, President of the Global Carrier Marketing & Solution Sales Department, Huawei, said that looking at connectivity through Huawei's C.A.F (Coverage, Architecture and Fusion) model can
Suzano Brings Its Target for Capturing 40 Million Tons of Carbon From the Atmosphere Forward To 202522.10.2021 13:19:00 EEST | Press release
Suzano, the world's leading eucalyptus pulp producer and a global benchmark in the manufacture of bioproducts developed from eucalyptus, announces today that it has revised one of its 14 long-term goals – collectively known as Suzano’s “Commitments to Renewing Life”*. Suzano’s goal to remove 40 million tons of carbon from the air by 2030 has been brought forward by five years to 2025. With this revision, Suzano reinforces its capacity to make an even more positive contribution to the planet's climate by achieving net carbon removals from the atmosphere at a faster pace than previously expected. The new five-year target will be supported by the expansion of Suzano’s forest covering which will involve both an uplift in commercial planting operations and setting aside new designated conservation areas that were previously anthropized. Alongside these improvements, Suzano will maintain its focus on reducing carbon emissions across its own operations and supply chain and will continue to im
AntChain Launches Its First Security Chip and New Blockchain Platform Powered by Privacy Computing Technology22.10.2021 13:01:00 EEST | Press release
AntChain, the flagship technology brand of Ant Group, today unveiled two new products at the Apsara Conference 2021 in Hangzhou – the FAIR platform and the T1 security chip – to ensure the security and trustworthiness of data flows within blockchain networks. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211022005166/en/ Yan Ying, technical director of AntChain, unveiled the FAIR platform at the Apsara Conference on October 22, 2021. (Photo: Business Wire) Based on AntChain’s upgraded technical architecture, the FAIR platform natively integrates privacy-preserving computation (PPC) and blockchain technologies in a unified platform, unleashing the value of data flows over their entire lifecycle. FAIR is designed to address pain points in multi-party collaboration on data flows, which is increasingly common on the industrial internet. It replaces traditional “PPC plus blockchain” dual-system architecture, integrating the two
Total Telecom: Maximizing the Value of Connectivity22.10.2021 13:00:00 EEST | Press release
Total Telecom reported that i ndustry leaders gathered recently at Ultra-Broadband Forum 2021, organized by UN Broadband Commission and Huawei, held in Dubai to discuss building future-proof networks sustainably. Total Telecom thinks that the expectations from digital connectivity have been redefined in the last one year. From conducting financial transactions online to remote factory management, the digital way of life is becoming pervasive. "Connectivity reshaped how we live and work when the pandemic hit in 2020. Connectivity is more than an expansion of functions, it is an emotional bond. As long as there is connectivity, there is a bond. Where there is connectivity, there is innovation. It presents us with unlimited possibilities. I believe in our shared mission to create a connected world," says Ryan Ding, Executive Director of the Board, President of the Carrier BG, Huawei, in his inaugural address. The C.A.F (Coverage, Architecture and Fusion) model is emerging as a way for the
Egle Therapeutics Raises 40 Million € Series a to Develop First-In-Class T-regulatory Cells Therapies Based On Treg-starvers22.10.2021 12:30:00 EEST | Press release
Egle Therapeutics SAS (Egle), an emerging biotechnology company focused on developing First-In-Class immunotherapies targeting immune suppressor regulatory T-cells (Tregs) for oncology and autoimmune diseases, today announces that it has completed a €40M ($46.4M) Series A financing. The Series A was co-led by LSP and Bpifrance through their InnoBio 2 fund. Fund+, Bioqube Ventures and Takeda Ventures, Inc. also participated in this round. Egle Therapeutics was founded in early 2020 with a vision to become a game changer in the field of Tregs immunomodulation through the unique concept of Tregs starving and specifically targeting the most immunosuppressive ones. Spun out of Institut Curie, Egle’s scientific foundation leverages unprecedented, computational-based, IL-2 modified variants and newly tumor-associated Treg targets to build a furnished pipeline of First-In-Class immunocytokines against Tregs. The new capital will be used primarily to advance 2 leads assets into the clinic and f
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom