News & Analysis as of

Digital Operational Resilience Act (DORA) Risk Management Third-Party Risk

Morgan Lewis - Tech & Sourcing

EBA Proposes Extending Outsourcing Requirements to All Third-Party Arrangements

Morgan Lewis - Tech & Sourcing on

The European Banking Authority (EBA) recently published a consultation paper (Consultation) that proposes to expand third-party risk management requirements for certain EU-regulated financial entities. The Consultation would...more

Katten Muchin Rosenman LLP

ESAs Publish Guide on Oversight of Critical ICT Third-Party Service Providers under DORA

Katten Muchin Rosenman LLP on

The European Supervisory Authorities (ESAs) recently published a comprehensive guide (Guide) on the oversight of critical information and communications technology (ICT) third-party service providers (CTPPs) under the EU...more

Hogan Lovells

The EU NIS2 Directive and intra-group IT services

Hogan Lovells on

Key takeaways The EU NIS2 Directive defines cybersecurity obligations also for entities providing IT services only within their own corporate group of companies. To assess the applicability of these obligations, the necessary...more

A&O Shearman

UK FCA findings on multi-firm review of data quality control frameworks in benchmarks sector

A&O Shearman on

The UK Financial Conduct Authority (FCA) has published a new webpage summarising the findings of its multi-firm review into how benchmark administrators (BMA) manage data-related risks. While the FCA found some firms to...more

A&O Shearman

ESAs publish joint guide on oversight of critical third-party providers under DORA

A&O Shearman on

The European Supervisory Authorities (European Banking Authority, European Insurance Occupational Pensions Authority, and European Securities and Markets Authority) have published a joint guide detailing their oversight...more

Pillsbury Winthrop Shaw Pittman LLP

DORA Now Fully in Effect: Financial Entities and Their Service Providers Reach Critical Milestone

Pillsbury Winthrop Shaw Pittman LLP on

With DORA in effect and the European Banking Authority’s updated guidelines for non-ICT services under consultation, financial entities must consider their approach to third-party risk management. After DORA became effective...more

A&O Shearman

EBA consults on draft guidelines for third-party risk management for non-ICT related services

A&O Shearman on

The European Banking Authority (EBA) has published a consultation paper on its draft guidelines for managing third-party risk with regards to non-ICT related services. The guidelines will revise and update its prior 2019...more

Ankura

Navigating the Digital Operational Resilience Act (DORA): How We Helped Indian Banks Operating in Europe

Ankura on

The Digital Operational Resilience Act (DORA) is a transformative regulation introduced by the European Union to bolster the resilience of financial institutions against Information and Communication Technology (ICT) risks....more

Integreon

DORA Compliance Part 2: Addressing Compliance Across Critical Operational Areas

Integreon on

Introduction to DORA and its Implications - As of Jan.17, 2025, the European Union’s Digital Operational Resilience Act (DORA) became enforceable. This new regulatory framework significantly impacts financial institutions and...more

King & Spalding

EU DORA: Are you in scope, and if so, how can you prepare?

King & Spalding on

The Digital Operational Resilience Act (DORA) establishes a harmonised and comprehensive framework for information and communication technology (ICT) risk management in the financial sector. It is a directly applicable EU...more

10 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide