DORA Compliance Assessment
Assess your organization's readiness for the Digital Operational Resilience Act (DORA). Identify gaps across ICT risk management, incident handling, testing, and third-party management.
What is DORA?
The Digital Operational Resilience Act (Regulation EU 2022/2554) establishes uniform requirements for ICT risk management and resilience in the EU financial sector. It applies from January 17, 2025.
Who Must Comply?
Banks, insurance companies, investment firms, payment institutions, crypto-asset service providers, and other financial entities. Also applies to critical ICT third-party service providers.
Select Your Entity Type
Five Pillars of DORA
Comprehensive framework for identifying, protecting, detecting, responding to ICT risks
Detection, classification, and reporting of ICT-related incidents
Testing of ICT systems including threat-led penetration testing (TLPT)
Oversight of ICT service providers and contractual requirements
Arrangements for sharing cyber threat intelligence
Key Deadline
January 17, 2025: DORA becomes applicable. All in-scope entities must be compliant.
Takes approximately 15-20 minutes to complete