Big questions linger as DORA compliance approaches
The major EU regulation will go live tomorrow. Outstanding clarifications and confusion around the definition of an ICT service, penetration testing, subcontracting, and more remain.
Despite the fact that the European Union’s ambitious Digital Operational Resilience Act takes effect tomorrow (January 17), many questions are still unanswered.
DORA is a significant piece of legislation aimed at ensuring the financial sector’s resilience to cyber threats and tech outages. It also represents a major step by EU regulators to extend greater oversight of hyperscalers like Amazon Web Services, Google Cloud and Microsoft Azure in financial services.
At DORA’s core are five pillars
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: https://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@waterstechnology.com
More on Regulation
How gatecrashers could spoil the tokenization party
Blockchain can curb settlement risks, but that could come at the expense of new third-party risks.
US regulators remove FIGI proposal from joint FDTA rules
The Financial Data Transparency Act’s final rules omit an earlier proposal to establish the FIGI as a common financial instrument identifier across regulatory reporting activities.
Can Canada follow in the US’s footsteps in overnight trading?
Canadian marketplaces and trading venues are in a race to see who can first authorize overnight equities trading, but not everyone is convinced of its value.
Will SEC reporting proposal supercharge alt data providers?
An SEC proposal that would let companies opt out of quarterly reporting disclosures could be a boon for alternative data providers.
Paxos wins temporary approval for blockchain clearing push
Blockchain infrastructure company will have a period of 18 months to “ramp up” readiness for operations, per the SEC’s approval letter.
Is a 2027 T+1 move too soon for Hong Kong?
The Waters Wrap: Wei-Shen examines HKEx’s discussion paper on moving to T+1 in Q4 2027. A move so soon has its benefits but still requires careful consideration, she says.
EU AI Act leaves agents in regulatory limbo
A new paper published by AI ethicists draws attention to a hole in the EU AI Act surrounding high-risk agentic systems.
AI governance rules coming soon, says CFTC chair
Selig doesn’t want to stifle innovation, but says trading or advice algos will need guardrails.
