Payments, Reviews, Tools

Understanding Dora, the Digital Operational Resilience Act and Its Implications for the Financial Sector

on

    More in Payments:

    As the financial sector continues to evolve in response to digital transformation, ensuring robust operational resilience has become paramount. The Digital Operational Resilience Act (DORA), an essential regulation from the European Union (EU), addresses this need by setting stringent standards for information and communication technology (ICT) risk management in financial institutions. This article provides an overview of DORA, its key components, and the impact it will have on the financial industry.

    What is DORA?

    DORA, formally adopted by the EU in November 2022, is a regulatory framework aimed at enhancing the digital operational resilience of the financial sector. It addresses the increasing vulnerability of financial entities to cyber-attacks and other ICT-related disruptions. DORA’s comprehensive scope applies to over 22,000 financial institutions and ICT service providers within the EU, including traditional banks, insurance companies, and newer players like crypto-asset service providers.

    Key Pillars of DORA

    DORA is built on five critical pillars, each designed to strengthen the financial sector’s ability to withstand, respond to, and recover from ICT disruptions:

    1. ICT Risk Management: Financial institutions must assess, mitigate, and manage risks associated with their ICT systems. This includes conducting comprehensive risk assessments, implementing protective measures like multi-factor authentication and data encryption, and ensuring employees are trained to recognize and respond to cyber threats.
    2. Incident Reporting: DORA requires financial entities to establish systems for detecting, reporting, and analyzing ICT-related incidents in real time. This ensures that incidents are managed effectively, lessons are learned, and future occurrences are prevented.
    3. Digital Operational Resilience Testing: Regular testing of ICT systems is mandated to ensure they are robust enough to withstand cyber threats. This includes annual penetration tests, stress testing under extreme conditions, and simulated phishing attacks to assess employee awareness.
    4. Third-Party Risk Management: DORA emphasizes the need for financial institutions to manage their relationships with external ICT service providers carefully. This involves setting clear contractual agreements, continuous monitoring, and ensuring compliance with DORA standards.
    5. Information Sharing: DORA encourages the creation of trusted networks for sharing information about threats and vulnerabilities, enhancing collective resilience across the financial sector.

    Implementing DORA: Challenges and Strategies

    While DORA provides a robust framework for digital resilience, its implementation presents several challenges. Financial institutions must navigate complex requirements, such as revising third-party contracts and improving incident reporting mechanisms. Effective strategies for overcoming these challenges include conducting gap assessments, developing a compliance roadmap, and adopting new technologies to enhance cybersecurity measures.

    The Impact of DORA on the Financial Sector

    DORA is set to reshape the financial industry’s approach to digital operational resilience. By enforcing high standards across the sector, DORA not only protects individual institutions but also contributes to the overall stability of the financial system. Additionally, its global implications mean that non-EU entities providing ICT services to EU-based financial institutions must also comply with these stringent standards.

    Preparing for DORA: A Strategic Approach

    Financial institutions should start preparing for DORA by taking proactive steps toward compliance. This includes conducting thorough gap assessments, revising third-party contracts, and establishing governance structures to oversee digital resilience efforts. Regular training and awareness programs, along with continuous adaptation to evolving threats, will be crucial for maintaining compliance and enhancing resilience.

    Conclusion

    DORA represents a significant step forward in safeguarding the financial sector against digital threats. As the deadline for full compliance approaches in January 2025, financial institutions must prioritize their efforts to meet DORA’s requirements. By doing so, they will not only comply with regulations but also strengthen their ability to operate securely in an increasingly digital world.

    PostAd_coinrule_banner728x90

    Leave a Comment

    Your email address will not be published. Required fields are marked *

    *

    SC Ventures leads investment in One Trading following landmark European crypto derivatives trading approval

    2024-09-17T08:00:00Z
    • One Trading is the first MiFID II trading venue for perpetual futures in the EU and is the first regulated derivatives exchange in Europe accessible to retail clients
    • Existing investor MiddleGame Ventures increased its stake in One Trading, while Valar and SpeedInvest also participated

    AMSTERDAM, Sept. 17, 2024 (GLOBE NEWSWIRE) -- SC Ventures, Standard Chartered’s innovation, fintech investment and ventures arm, has made a strategic investment in One Trading, a leading European crypto-asset exchange. As part of this round, existing investor MiddleGame Ventures increased its stake in One Trading, while Valar and SpeedInvest also participated. The terms of the deal were not disclosed.

    “As a major, multinational bank with a commitment to innovation, SC Ventures is dedicated to driving digital assets market infrastructure. We welcome them as an investor in the company and believe they can add a lot of value to One Trading and our clients,” said Joshua Barraclough, Founder and CEO of One Trading.

    One Trading will use the investment to support launching the first crypto perpetual futures in the European Union (EU) as a MiFID II trading venue. The MiFID II is a regulatory framework the EU rolled out in 2018 to increase transparency and improve investor protections across European financial markets. In July 2024, the Dutch financial market regulator granted One Trading an Organised Trading Facility (OTF) License, which establishes One Trading as a MiFID II trading venue.

    First regulated derivatives exchange in Europe accessible to retail clients

    With the OTF License approval, One Trading is the only crypto perpetual futures trading venue in the EU and the first cash-settled perpetuals platform in Europe, including the UK. One Trading is also the first regulated derivatives exchange in Europe which will be accessible to retail clients. 

    The OTF license approval marks a milestone in One Trading's multi-year journey with the Dutch Financial Markets Authority (AFM) and the Dutch Central Bank (DNB) to revolutionize derivatives trading and bring crypto futures onshore in the EU. 

    Strategic partnerships

    “Financial innovation should not come at the cost of consumer protection, that’s why we are glad to see One Trading receiving the OTF License. We congratulate the team on becoming the first MiFID II trading venue for crypto perpetual futures in the EU,” said Alex Manson, CEO of SC Ventures. “We look forward to One Trading providing much needed infrastructure to all participants in the EU and further afield.”

    “We saw the potential for One Trading early in its journey and we are delighted to be participating with SC Ventures and others in this investment. We are happy to support One Trading to become the undisputed leading onshore, licensed and institutional trading venue the digital assets market has been clamouring for,” said Pascal Bouvier, Managing Partner, MiddleGame Ventures.

    Media Contacts
    Eterna Partners for One Trading
    eternapartners@onetrading.com
    +447762943498

    press@onetrading.com
    +447795433650

    SC Ventures
    SC Ventures is a business unit that provides a platform and catalyst for Standard Chartered to promote innovation, invest in disruptive financial technology and explore alternative business models.
    For more information, please visit www.scventures.io and follow SC Ventures on LinkedIn.

    Standard Chartered
    We are a leading international banking group, with a presence in 53 of the world’s most dynamic markets and serving clients in a further 64. Our purpose is to drive commerce and prosperity through our unique diversity, and our heritage and values are expressed in our brand promise, here for good.
    Standard Chartered PLC is listed on the London and Hong Kong stock exchanges.
    For more stories and expert opinions please visit Insights at sc.com. Follow Standard Chartered on X, LinkedIn, Instagram and Facebook.

    One Trading
    One Trading is a European digital asset exchange headquartered in the Netherlands. The company is committed to providing a secure, fast, and scalable platform for trading crypto-assets and derivatives. With a focus on innovation and regulatory compliance, One Trading aims to set new standards in the industry and offer unparalleled services to its customers. For more information, please visit our website, or LinkedIn.
    NB: One Trading has no affiliation to Bitpanda’s business.


    GlobeNewsWire News

    Recent Comments