Business Wire

ISACA Provides Guidance Around EU’s Proposed Digital Operational Resilience Act

Share

Reforms following the 2008 financial crisis helped strengthen the resilience of the financial sector, but did not fully address digital operational resilience. The European Union’s recently released Digital Operational Resilience Act (DORA) draft is designed to provide digital operational resilience rules for EU financial institutions, and ISACA provides guidance on this proposal in its new white paper, Digital Operational Resilience in the EU Financial Sector: A Risk-Based Approach.

When finalized, DORA will enact rules for financial services system operators like investment firms, credit institutions, trading venues and electronic money institutions to ensure these systems’ stability and resilience to cyber incidents. Digital Operational Resilience in the EU Financial Sector outlines the objectives and legal basis for DORA, as well as its information and communication technology (ICT) requirements around risk management, information and cybersecurity, incident reporting, testing, and oversight of third-party service providers, some of which include:

  • Set up and maintain resilient ICT systems and tools that minimize the impact of ICT risk.
  • Have an ICT risk-management framework that includes strategies, policies, procedures, ICT protocols and tools necessary to effectively protect all relevant physical components and infrastructures from risk, such as damage and unauthorized access or usage.
  • Test the ICT business continuity policy and the ICT disaster recovery plan at least yearly, and after substantive changes to the ICT systems.
  • Include relevant provisions on accessibility, availability, integrity, security and protection of personal data, and guarantees for access, recover and return in the case of failures of the ICT third-party service providers in contracts that govern the relationship with third-party providers.

“The requirements laid out in DORA to identify all sources of ICT risk on a continuous basis and mandate an annual review of ICT risk management frameworks and review after a major incident, audit or testing are a step in the right direction,” says Chris Dimitriadis, ISACA chief global strategy officer. “However, to further strengthen the act, ISACA encourages provisions ensuring that ICT risk management plans go beyond being a compliance exercise by embedding governance responsibility within the management body, as well as requiring continuous training and ICT awareness of senior management and staff and independent testing performed by testers who are certified.”

During this period in which the DORA regulation is under consideration in the European Parliament and Council of the EU, ISACA’s EU Task Force is engaging with policy makers and sharing feedback. The final version of the regulation is expected in an estimated 18-24 months.

“ISACA is recognized among policy makers as an independent source of expertise on cybersecurity issues. The variety of backgrounds and experience of our members, reflected in the EU Task Force, have been welcomed by policy makers who have valued our contributions to the debate,” says Emily Bastedo, ISACA director for global government relations and public affairs.

To download a complimentary copy of Digital Operational Resilience in the EU Financial Sector, visit https://store.isaca.org/s/store#/store/browse/detail/a2S4w000004L1sxEAC. Additional publications that may be helpful for financial entities as they prepare for DORA include ISACA’s Risk IT Framework, 2nd Edition; Risk IT Practitioner Guide, 2nd Edition; and IT Risk Fundamentals Study Guide. Other IT risk-related resources can be found at www.isaca.org/resources/it-risk.

About ISACA

For more than 50 years, ISACA® (www.isaca.org) has advanced the best talent, expertise and learning in technology. ISACA equips individuals with knowledge, credentials, education and community to progress their careers and transform their organizations, and enables enterprises to train and build quality teams. ISACA is a global professional association and learning organization that leverages the expertise of its more than 150,000 members who work in information security, governance, assurance, risk and privacy to drive innovation through technology. It has a presence in 188 countries, including more than 220 chapters worldwide. In 2020, ISACA launched One In Tech, a philanthropic foundation that supports IT education and career pathways for under-resourced, under-represented populations.

Twitter:www.twitter.com/ISACANews
LinkedIn: www.linkedin.com/company/isaca
Facebook:www.facebook.com/ISACAGlobal
Instagram:www.instagram.com/isacanews

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

Contact information

Emily Van Camp, evcamp@isaca.org, +1.847.385.7223
Kristen Kessinger, communications@isaca.org, +1.847.660.5512

About Business Wire

Business Wire
Business Wire



Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

Bentley Education Program Expands to Global Scope25.10.2021 22:01:00 CEST | Press release

Bentley Systems, Incorporated (Nasdaq: BSY), the infrastructure engineering software company, as a commitment to expand access to its professional applications to education, today announced the global expansion of the Bentley Education program – offering seamless access to learning licenses of over 60 popular Bentley applications, at no cost, to all eligible students and educators, from middle schools through higher education levels, via the Bentley Education portal. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211025005717/en/ The Bentley Education program helps students develop digital skills that are critical for a qualified talent pipeline to support infrastructure growth and resilience worldwide. (Photo: Business Wire) Following on the initial May 3, 2021 announcement of the launch of Bentley Education in the pilot countries of Australia, the UK, Singapore, Lithuania, and Ireland, the program is gaining a resounding r

X-Chem Acquires ComInnex25.10.2021 20:00:00 CEST | Press release

X-Chem, the pioneer of DNA-encoded library (DEL) technology and recognized leader in generating actionable results to drive small molecule drug discovery, today announced the acquisition of ComInnex, a leading European provider of synthetic chemistry services and novel chemical technologies to support early-stage drug discovery. With demand for high-quality discovery services increasing across the world, this complementary pairing of a North American leader in DEL and medicinal chemistry with a European leader in synthetic chemistry and custom DEL services delivers the capacity, footprint and expertise to better serve the demands of customers in a global market. “As a united company, with an increased global presence, we are positioned to meet the increasing demand for innovative chemistry solutions and high-quality discovery services worldwide,” noted Matt Clark, Ph.D., CEO of X-Chem. “The acquisition of ComInnex further extends X-Chem’s expertise and scale of DEL services to help bio

European Commission Selects Humanigen’s Lenzilumab as One of the 10 Most Promising Treatments for COVID-1925.10.2021 16:30:00 CEST | Press release

Humanigen, Inc. (Nasdaq: HGEN), a clinical-stage biopharmaceutical company focused on preventing and treating an immune hyper-response called ‘cytokine storm’ with its lead drug candidate, lenzilumab, today announced the European Commission identified lenzilumab as one of the “10 most promising treatments for COVID-19” in a report and press release issued on October 22, 2021.1,2 “We are gratified the European Commission has recognized the potential of lenzilumab to offer an important treatment option for patients hospitalized with COVID-19,” said Cameron Durrant, MD, Chairman and CEO, Humanigen. “We look forward to continuing our discussions with colleagues at the European Medicines Agency to advance our efforts to submit a marketing authorization application for lenzilumab in COVID-19. We are also progressing with our early access program, under compassionate use, where allowed by regulations in some European countries and the United States.” *Lenzilumab is not authorized, or approved

Study Finds Overwhelming Evidence That Color Blindness Hinders Learning in School, Reports EnChroma25.10.2021 14:00:00 CEST | Press release

EnChroma – creators of glasses for color blindness – today released the results of a landmark study that clearly demonstrates the negative effect color blindness has on learning for millions of students. The data strongly indicates that schools are failing to identify color blind students and that parents, educators and legislators need to better support these students. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211025005173/en/ Standard Color Vision and Color Blind View @EnChroma In early 2020, nearly 1,000 color blind people, including the parents of color blind children, shared their opinions about how Color Vision Deficiency (CVD) affected their educational experiences. Seventy-eight percent said they were often frustrated or confused by colors in school assignments and activities. One in three say color blindness affected their confidence in school, and 30% felt like they might be a “slow learner” before discovering

Rockefeller Capital Management to Open First International Office in London with the Formation of Rockefeller Asset Management International25.10.2021 14:00:00 CEST | Press release

Rockefeller Asset Management (RAM), a division of Rockefeller Capital Management, with a long track record of investing in global equities and ESG investing has announced the formation of Rockefeller Asset Management International, to expand its European market presence. The initial plans for expansion include opening an office in London, to better serve clients across the UK, Europe, and Asia. “Our Asset Management business has generated real momentum across Europe and we are excited to continue to serve our international clients with a full suite of sustainable investment products and a growing local presence,” said Greg Fleming, CEO and President of Rockefeller Capital Management. RAM, which was recently awarded the 2021 Principles for Responsible Investing (PRI) award for “ESG incorporation initiative of the year,” has seen strong growth in Europe. Over the last two years, the business, which surpassed $2.5 billion in assets from European investors, launched a UCITS ICAV, an Irelan

Ferring Presents Award-Winning, Real-World Outcomes Analysis for Investigational Microbiota-Based Live Biotherapeutic, RBX2660, at ACG 202125.10.2021 14:00:00 CEST | Press release

Ferring Pharmaceuticals and Rebiotix, a Ferring Company, today announced the results of two key retrospective analyses at the American College of Gastroenterology 2021 annual congress. One analysis evaluated the safety and efficacy of investigational RBX2660 among a broad cohort of CDI patients with comorbidities commonly found in patients with CDI, and was recognized with a Presidential Poster Award for high-quality, novel, unique and interesting research. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20211025005099/en/ Ferring Fact Sheet While the eligibility criteria in prospective clinical trials often are narrowly defined to include patients diagnosed with only CDI, this analysis allowed researchers to evaluate the impact of RBX2660 in a patient population that is more reflective of a real-world setting. In the analysis, 94 participants with comorbid conditions commonly found in people with recurrent CDI (rCDI) were trea

CAPRISA and Evotec Launch New Project to Fast-Track New Technology for HIV Prevention25.10.2021 13:53:00 CEST | Press release

Today, at a side meeting during the AU-EU Ministerial Summit in Kigali, Rwanda, Prof Salim Abdool Karim, Director of CAPRISA, announced a collaboration with a leading life science company Evotec for the designing and development of CAP256, a broadly neutralizing antibody against HIV. The project is a major expansion of the development of an antibody originally developed jointly by CAPRISA and the Vaccine Research Center (VRC) of the National Institute of Allergy and Infectious Diseases of the US NIH. This new project is a major boost for the CAP256 antibody as a potential tool in the fight against HIV in Africa and showcases the potential of African researchers to fight the continent’s high-burden diseases. The principal aim of the new joint project is to change the course of the HIV epidemic in Africa, which has 70% of the global HIV burden. CAP256, isolated from a South African woman by CAPRISA and the VRC, has demonstrated a good safety profile in Phase I studies. The next step is t

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom