A new framework for third-party risk in the European Union
Report: DORA and cyber risk
At the start of 2023, the Digital Operational Resilience Act (DORA) came into force in the EU to protect customers and EU financial institutions from systemic cybersecurity risks affecting information and communication technology (ICT).
DORA was introduced as a method of building risk resilience within financial organizations, ensuring that they establish and monitor trust networks among their ICT and their vendors.
This paper from SecurityScorecard highlights the security risks - including third-party - impacting financial entities in the EU today and introduces a verification framework for DORA, covering all major aspects of it to support institutions in their preparation.
You will learn:
- How zero trust can provide the framework to mitigate third-party risk
- The seven steps financial institutions need to follow to prepare for DORA
- How SecurityScorecard can empower your business to stay ahead of potential threats and vulnerabilities.
Download today.
Provided by SecurityScorecard
-
Post-cloud strategy: Architecting the next enterprise stackAs enterprises rethink their dependence on hyperscale, hybrid architectures are emerging as the new foundation for resilient, AI-ready infrastructure
-
Anthropic just launched Claude Fable 5, its first Mythos-class AI modelNews The launch of Claude Fable 5 marks the first public release of a Mythos-class AI model
-
AI is shrinking attack windows, and it’s forcing a complete rethink of cyber resilience – here’s how organizations can prepareNews Commvault has urged companies to improve their business continuity and resilience plans in the face of flaws spotted by AI
-
Hackers are turning up at law firms to gain physical access to machinesNews The FBI is warning companies to look out for fake IT staff
-
UK wants an AI-powered anti-hacking systemNews GCHQ is building a national cyber defence capability powered by AI – though it may take five years
-
GitHub internal repositories exfiltrated via malicious VS Code extensionNews The breach has been claimed by the TeamPCP hacking group, which said it is offering the data for sale
-
Anthropic targets vulnerability detection gains with Claude Security public beta — here's what users can expectNews The Claude Mythos developer is aiming for a more limited approach to cyber tooling for public consumption
-
Researchers warn millions of RDP and VNC servers are wide open to exploitationNews Researchers at Forescout spotted millions of RDP and VNC servers exposed online
-
Brace yourselves for a vulnerability explosion, Forescout warnsNews AI advances are helping identify software flaws at record pace and scale, but that's not the good news some would think
