Tag: dora
-
Legal impact on cybersecurity in 2025: new developments and challenges in the EU
by
in SecurityNews
Tags: 5G, authentication, compliance, corporate, cybersecurity, dora, finance, framework, fraud, identity, law, network, regulation, resilience, risk, service, strategy, technology, theftDORA Regulation: digital operational resilience in the financial sector: Regulation 2022/2554 (DORA) focuses on increasing the “Digital Operational Resilience” of financial institutions. Approved on 14 December 2022, DORA seeks to strengthen the security and robustness of financial sector entities’ information systems, with the aim of reducing technological risks and cyberthreats.As mentioned, DORA is applicable to…
-
DORA in practice: Obstacles and recommendations for companies
by
in SecurityNews
Tags: doraFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/dora-cyber-resilience-recommendations-eu
-
DORA in der Praxis: Stolpersteine und Empfehlungen für Unternehmen
by
in SecurityNews
Tags: doraFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/dora-praxis-stolpersteine-empfehlungen
-
Continuous Compliance: Automatisierte Compliance für den Finanzsektor
by
in SecurityNewsFinanzunternehmen stehen vor neuen Herausforderungen: Strenge Regulatorik wie die EU-Verordnung DORA (Digital Operational Resilience Act) setzt hohe Standards, um die IT-Sicherheit zu stärken. Doch wie lassen sich diese Anforderungen effizient umsetzen und gleichzeitig die Wettbewerbsfähigkeit steigern? Das EU-Forschungsprojekt »EMERALD« liefert Antworten. EMERALD verfolgt das Ziel, die automatisierte Einhaltung von Compliance-Anforderungen durch innovative Technologien zu… First…
-
Hiscout aktualisiert sein Informationssicherheit-Modul mit neuen regulatorischen Anforderungen in Bezug auf NIS2 und DORA gemäß ISO27001
by
in SecurityNewsAls führender Anbieter von Softwarelösungen für Governance, Risk und Compliance (GRC) hat Hiscout im aktuellen Release 3.7.0 im Hinblick auf neue regulatorische Anforderungen wie NIS2 und DORA den Schwerpunkt auf die Aktualisierung des ISM-Moduls (Informationssicherheit) mit Fokus auf die ISO27001 gelegt. Mit neuen Features wie einem mandantenfähigen Policy-Management und einem Auslagerungsmanagement werden hohe Compliance-Standards erfüllt.…
-
3 Steps to Take to Meet DORA Compliance Before April 30, 2025
by
in SecurityNewsChief Information Security Officers (CISOs) face an important milestone on April 30th, 2025: ensuring their organizations are ready to meet the strict requirements of the EU’s Digital Operational Resilience Act (DORA). By April 30th, companies must have established comprehensive registers of information related to their Information and Communication Technology (ICT) services. This involves not only……
-
How Slashing the SAT Budget Is Appreciated By Hackers
by
in SecurityNewsThe Growing Need for Cybersecurity Awareness Training (SAT) In today’s rapidly evolving cyber threat landscape, organizations are increasingly recognizing the critical importance of Cyber Security Awareness Training (SAT) as a fundamental defense strategy. Regulatory changes like NIS2 and DORA further emphasize this need for robust cybersecurity initiatives. However, despite this acknowledgment, many organizations are still……
-
Wettbewerbsvorteil statt Compliance-Übung Warum DORA mehr ist als ein Hürdenlauf
by
in SecurityNewsDie digitale Transformation im Finanzsektor schreitet unaufhaltsam voran und mit ihr wachsen die Anforderungen an die IT-Sicherheit. Mit dem Digital Operational Resilience Act (DORA) hat die EU nun einen wegweisenden Regulierungsrahmen geschaffen, der die digitale Widerstandsfähigkeit von Finanzinstituten stärken soll. Die neue Verordnung betrifft nicht nur Banken und Versicherungen, sondern den gesamten Finanzsektor inklusive […]…
-
DORA ist mehr als nur ein weiteres Regelwerk: Wettbewerbsvorteil statt Compliance-Übung
by
in SecurityNews[link text=”DORA” id=”39656″] markiert einen Wendepunkt in der Regulierung digitaler Resilienz im Finanzsektor. Der Erfolg in der Umsetzung wird maßgeblich davon abhängen, wie gut es Unternehmen gelingt, technische, prozedurale Lösungen wie IGA mit organisatorischen Maßnahmen und einem Risikomanagement zu verbinden. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-ist-mehr-als-nur-ein-weiteres-regelwerk-wettbewerbsvorteil-statt-compliance-uebung/a39736/
-
CIOs and CISOs grapple with DORA: Key challenges, compliance complexities
by
in SecurityNews
Tags: access, automation, banking, business, cio, ciso, communications, compliance, control, country, cyber, cybersecurity, data, dora, finance, framework, GDPR, governance, jobs, law, monitoring, network, nis-2, penetration-testing, privacy, regulation, resilience, risk, risk-management, service, skills, supply-chain, technology, threat, tool, training, vulnerabilityIn force since January, the Digital Operational Resilience Act (DORA) has required considerable effort from CIOs and CISOs at 20 types of financial entities to achieve compliance. For many, the journey is not complete.”In the past months, financial entities targeted by DORA have been busy internally defining roles and responsibilities related to ICT security, identifying…
-
21% of CISOs pressured to not report compliance issues
by
in SecurityNews
Tags: awareness, breach, business, ceo, ciso, compliance, control, corporate, cybersecurity, data, dora, finance, framework, governance, incident response, infrastructure, insurance, law, nis-2, regulation, resilience, risk, security-incident, trainingCISOs are increasingly getting caught between business pressures and regulatory obligations, leaving them struggling to balance corporate loyalty and legal accountability.To wit: One in five (21%) security leaders have been pressured by other executives or board members not to report compliance issues at their companies, according to a recent study by security vendor Splunk.The same…
-
Finanzsektor: Herausforderungen und zugleich Chancen durch DORA
by
in SecurityNews
Tags: doraFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/finanzsektor-herausforderungen-chancen-dora
-
DORA-Rettungsanker: Automatisierte Tests
by
in SecurityNewsSeit dem 17. Januar 2025 ist der Digital Operational Resilience Act (DORA) in Kraft. Ohne nationale Umsetzungsgesetze gilt die Verordnung direkt und einheitlich in allen EU-Mitgliedstaaten. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-rettungsanker-automatisierte-tests/a39656/
-
DORA Compliance Must be a Top Priority for US Financial Institutions
by
in SecurityNewsIn an era where digital resilience determines market survival, the European Union’s Digital Operational Resilience Act (DORA) has emerged as a global benchmark for financial sector cybersecurity. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/dora-compliance-must-be-a-top-priority-for-us-financial-institutions/
-
DORA erfordert robuste Risikomanagementprozesse über die gesamte Lieferkette hinweg
by
in SecurityNewsDer Finanzsektor ist mit regulatorischen Anforderungen bestens vertraut, doch DORA stellt insbesondere im Bereich Drittanbieter und Lieferketten neue Herausforderungen dar. Eine durchgehende Compliance erfordert die Anpassung von Risikomanagementprozessen und Service-Level-Agreements. Ein Kommentar von Andre Troskie, EMEA Field CISO bei Veeam. Im Gegensatz zu anderen Wirtschaftsbereichen, die ebenfalls die NIS2 einhalten müssen, sind dem Finanzsektor strenge Vorschriften…
-
US takes aim at healthcare cybersecurity with proposed HIPAA changes
by
in SecurityNews
Tags: access, authentication, best-practice, breach, compliance, control, csf, cyber, cyberattack, cybersecurity, data, defense, detection, dora, encryption, finance, framework, government, group, healthcare, HIPAA, incident response, infrastructure, insurance, intelligence, jobs, law, malware, mfa, network, nist, penetration-testing, phishing, privacy, ransom, ransomware, regulation, resilience, risk, security-incident, service, skills, technology, threat, tool, update, usa, vulnerability, vulnerability-managementThe US Department of Health and Human Services (HHS) has launched a consultation on stricter rules for the safeguarding of electronic health records.The proposed revamp of security rules covered by the Health Insurance Portability and Accountability Act (HIPAA) is designed to address the increased risk from cyberattacks such as ransomware against healthcare environments.The revamped rules…
-
Security chiefs whose companies operate in the EU should be exploring DORA now
by
in SecurityNews
Tags: attack, business, ciso, compliance, conference, corporate, cyber, cybersecurity, data, detection, dora, finance, framework, GDPR, incident, network, regulation, resilience, risk, service, technology, threat, vulnerabilityIf your enterprise operates in Europe, you should care about the Digital Operational Resilience Act (DORA), which took effect on January 17. DORA, also known as Directive (EU) 2022/2555 of the European Parliament, aims to enhance and build the EU’s cybersecurity capabilities and it has been hanging like the Sword of Damocles over the heads…
-
Europas neue Cyber-Sicherheitsverordnung stellt nicht nur den Finanzsektor vor Herausforderungen
by
in SecurityNewsFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/dora-europas-neuheit-cyber-sicherheitsverordnung-finanzsektor-herausforderungen
-
Midsize firms universally behind in slog toward DORA compliance
by
in SecurityNews
Tags: ai, business, ciso, compliance, cybersecurity, dora, finance, germany, insurance, intelligence, monitoring, resilience, risk, service, skills, technology, toolBeginning Friday, Jan. 17, all EU financial institutions are now required to operate in compliance with the Digital Operational Resilience Act (DORA). The EU directive aims to increase cybersecurity in the financial industry. However, studies show that many companies are still struggling with implementation.According to a November 2024 survey from metafinanz, the average level of…
-
DORA Takes Effect: Financial Firms Still Navigating Compliance Headwinds
by
in SecurityNewsThe EU’s DORA regulation is in effect as of January 17, with mixed evidence around compliance levels among financial firms First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/dora-financial-firms-compliance/
-
Einige Finanzinstitute sind unzureichend vorbereitet
by
in SecurityNewsEin ganzheitlicher und proaktiver Ansatz ist entscheidend, um die potenziellen geschäftlichen Auswirkungen eines Cybervorfalls zu minimieren. Anbieter wie Armis bieten hierbei maßgeschneiderte Lösungen, die Transparenz in IT-, OT- und IoT-Umgebungen schaffen und eine proaktive Risikominderung unterstützen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-einige-finanzinstitute-sind-unzureichend-vorbereitet/a39468/
-
DORA’s Deadline Looms: Navigating the EU’s Mandate for Threat Led Penetration Testing
by
in SecurityNewsWith DORA’s January 2025 compliance deadline approaching, financial institutions must embrace rigorous testing, tailored threat profiles, and continuous vigilance to safeguard against cyber threats. The post DORA’s Deadline Looms: Navigating the EU’s Mandate for Threat Led Penetration Testing appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/doras-deadline-looms-navigating-the-eus-mandate-for-threat-led-penetration-testing/
-
How Ephemeral on-demand data can improve DORA DevOps scores
by
in SecurityNewsUnderstand the performance metrics used to produce the DORA scores and how on-demand data from Tonic Ephemeral, as well as the integration between Ephemeral and Tonic Structural, can improve the DORA score for your development teams First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/how-ephemeral-on-demand-data-can-improve-dora-devops-scores/
-
DORA, oder wie steht es um die IT-Sicherheit bei Banken?
by
in SecurityNews
Tags: doraDie IT-Sicherheit der Banken ist ein essentielles Thema und die Funktionalität und Zuverlässigkeit des internationalen Zahlungssystems sicherzustellen. Aber wie sicher ist die IT der Bankenlandschaft? In der EU gibt es ja DORA, was die Sicherheit verbessern soll. Was ist DORA? … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/01/05/dora-oder-wie-steht-es-um-die-it-sicherheit-bei-banken/
-
KI-Tool für die Finanzbranche – Deloitte hilft bei der Einhaltung von DORA-Anforderungen
by
in SecurityNewsFirst seen on security-insider.de Jump to article: www.security-insider.de/deloitte-ki-unterstuetzung-finanzinstitute-dora-anforderungen-a-c4263d008af16e5e9f7929d4525343da/
-
DORA Regulation (Digital Operational Resilience Act): A Threat Intelligence Perspective
by
in SecurityNewsThe Digital Operational Resilience Act (DORA) is coming in 2025. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/dora-regulation-digital-operational-resilience-act-a-threat-intelligence-perspective/
-
Hacker knacken das Smart Home
by
in SecurityNews
Tags: android, bsi, cyber, cyersecurity, data, dora, firmware, germany, hacker, incident response, Internet, mail, malware, passkey, password, resilience, risk, security-incident, service, update, vulnerabilityloading=”lazy” width=”400px”>Im Smart Home werkeln immer mehr Devices mit Internet-Anschluss für Hacker ein lohnendes Ziel. Andrey Suslov shutterstock.comIoT-Geräte wie digitale Bilderrahmen oder Mediaplayer sind immer häufiger das Ziel von Cyberkriminellen. Viele dieser mit dem Internet verbundenen Geräte weisen Schwachstellen auf und können leicht mit Schadsoftware infiziert werden. Das Bundesamt für Sicherheit in der Informationstechnik (BSI)…
-
NIS2 vs. DORA: Key Differences and Implications for Cybersecurity and Operational Resilience
by
in SecurityNewsDiscover the key differences between the EU’s NIS2 and DORA frameworks and what they mean for your business. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/nis2-vs-dora-key-differences-and-implications-for-cybersecurity-and-operational-resilience/
-
DORA steht vor der Tür
by
in SecurityNews
Tags: ai, cisco, cloud, compliance, computing, crypto, cyberattack, cybersecurity, cyersecurity, detection, dora, endpoint, infrastructure, monitoring, resilience, risk, risk-management, service, threat, tool, vulnerability, zero-trustsrcset=”https://b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?quality=50&strip=all 12500w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=300%2C168&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=768%2C432&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1024%2C576&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1536%2C864&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=2048%2C1152&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1240%2C697&quality=50&strip=all 1240w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=150%2C84&quality=50&strip=all 150w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=854%2C480&quality=50&strip=all 854w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=640%2C360&quality=50&strip=all 640w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=444%2C250&quality=50&strip=all 444w” width=”1024″ height=”576″ sizes=”(max-width: 1024px) 100vw, 1024px”>DORA soll die Cybersicherheit in der Finanzbranche erhöhen. Vector Image Plus Shutterstock.comAb 17. Januar 2025 sind alle Finanzdienstleister in der EU verpflichtet, den Digital Operational Resilience Act (DORA)…