Episode Details

The Digital Operational Resilience Act (DORA) came into effect on 17 January 2025, significantly altering ICT risk management and reporting for EU financial institutions. Key changes include a unified reporting system for ICT incidents and cyber threats via the CSSF's eDesk platform, replacing previous frameworks. DORA supersedes existing CSSF circulars on ICT risk, outsourcing, and incident reporting, though some non-DORA provisions remain. Compliance requires entities to register their LEI code, designate an IT incident notifier, and inform the CSSF of any ICT outsourcing arrangements. Upcoming deadlines include submitting a register of information between 1st and 15th April 2025. Ongoing adaptation and collaboration are crucial for successful DORA implementation.

🎧 Tune in now for expert insights and get actionable strategies for your organization. Follow The Compliance Officers Playbook show/page and tap the (🔔) for 𝐝𝐚𝐢𝐥𝐲 𝐜𝐨𝐦𝐩𝐥𝐢𝐚𝐧𝐜𝐞 𝐢𝐧𝐬𝐢𝐠𝐡𝐭𝐬, 𝐭𝐫𝐞𝐧𝐝𝐬, 𝐚𝐧𝐝 𝐦𝐨𝐫𝐞.

If you enjoyed this episode, we’d love to hear from you! Follow us to stay updated on future episodes, and don’t forget to leave a review and rating ⭐️⭐️⭐️⭐️⭐️Your feedback helps us improve and reach more listeners like you.

Thank you for your support! ❤️🙏