A new framework for third-party risk in the European Union
Report: DORA and cyber risk
At the start of 2023, the Digital Operational Resilience Act (DORA) came into force in the EU to protect customers and EU financial institutions from systemic cybersecurity risks affecting information and communication technology (ICT).
DORA was introduced as a method of building risk resilience within financial organizations, ensuring that they establish and monitor trust networks among their ICT and their vendors.
This paper from SecurityScorecard highlights the security risks - including third-party - impacting financial entities in the EU today and introduces a verification framework for DORA, covering all major aspects of it to support institutions in their preparation.
You will learn:
- How zero trust can provide the framework to mitigate third-party risk
- The seven steps financial institutions need to follow to prepare for DORA
- How SecurityScorecard can empower your business to stay ahead of potential threats and vulnerabilities.
Download today.
Provided by SecurityScorecard
-
Anthropic promises ‘Opus-level’ reasoning with new Claude Sonnet 4.6 modelNews The latest addition to the Claude family is explicitly intended to power AI agents, with pricing and capabilities designed to attract enterprise attention
-
Researchers call on password managers to beef up defensesNews Analysts at ETH Zurich called for cryptographic standard improvements after a host of password managers were found lacking
-
CVEs are set to top 50,000 this year, marking a record high – here’s how CISOs and security teams can prepare for a looming onslaughtNews While the CVE figures might be daunting, they won't all be relevant to your organization
-
Microsoft patches six zero-days targeting Windows, Word, and more – here’s what you need to knowNews Patch Tuesday update targets large number of vulnerabilities already being used by attackers
-
What security teams need to know about the NSA's new zero trust guidelinesNews The new guidelines aim to move an organization from discovery to target-level implementation of zero trust practices
-
Fears over “AI model collapse” are fueling a shift to zero trust data governance strategiesNews Gartner warns of "model collapse" as AI-generated data proliferates – and says organizations need to beware
-
Experts welcome EU-led alternative to MITRE's vulnerability tracking schemeNews The EU-led framework will reduce reliance on US-based MITRE vulnerability reporting database
-
Veeam patches Backup & Replication vulnerabilities, urges users to updateNews The vulnerabilities affect Veeam Backup & Replication 13.0.1.180 and all earlier version 13 builds – but not previous versions.
-
Two Fortinet vulnerabilities are being exploited in the wild – patch nowNews Arctic Wolf and Rapid7 said security teams should act immediately to mitigate the Fortinet vulnerabilities
-
Everything you need to know about Google and Apple’s emergency zero-day patchesNews A serious zero-day bug was spotted in Chrome systems that impacts Apple users too, forcing both companies to issue emergency patches
