In this Help Net Security interview, Kris Lovejoy, Global Security and Resilience Leader at Kyndryl, discusses the impact of the Digital Operational Resilience Act (DORA) on organizations across the EU, particularly in ICT risk management and cybersecurity.
With a focus on enhancing enterprise cyber resiliency, DORA brings sector-specific regulations applicable to financial entities (FEs) and third-party service providers. Lovejoy discusses the alignment between DORA and NIS2 directives, the timeline for DORA’s implementation, and the imperative steps organizations must take to ensure compliance by the 2025 deadline.
How will DORA impact organizations across the EU, particularly regarding ICT risk management and cybersecurity?
The Digital Operational Resilience Act is among several recent and emerging regulations in the EU, created to enhance and standardize requirements for enterprise cyber resiliency. DORA is specific to financial entities operating in the EU-27 — including banks, insurance companies, credit agencies and more — and third-party service providers, such as Kyndryl, that support them. Now regulatory compliance (and associated fines and legal…
