The online course is an introduction to DORA and will be composed of three pre-recordedvideos of about 30/40 minutes each. The first part provides an overview of DORA’s background, aims,scope, principles and the general provisions on ICT risk management. The second part examinesother general requirements of DORA, focusing on ICT-related incident management, digitaloperational resilience testing, and key principles in managing ICT third-party risk. The third partaddresses some specific requirements of DORA, focusing on incident reporting, the advanced testingof ICT tools, systems and processes, the oversight framework for critical providers, and the rules oninformation-sharing arrangements.
Part I: Introduction and General Requirements of DORA
1.1. Background and aims of DORA
1.2. Scope, definitions and proportionality
1.3. Governance and organization to ensure effective and prudent management of ICT risk
1.4. ICT risk management framework
Part II: Other General Requirements of DORA
2.1. ICT-related incident management
2.2. Digital operational resilience testing (general requirements and testing of ICT tools and systems)
We use cookies to help personalise content and provide a better experience. By clicking Accept all, you agree to this, as outlined in our Cookie Policy. To change preferences or withdraw consent, please update your Cookie Preferences.