News & Analysis as of August 31, 2025

Financial Services Industry

+ Follow

The European Union is an economic and political partnership comprised of 27 nations within the Eurozone. The EU was established in 1948 to promote stability and cooperation among member states in the aftermath of WWII. The EU maintains a common currency as well as several intranational institutions, including the European Parliament and the European Commission. less -

ESAs Publish Guide on Oversight of Critical ICT Third-Party Service Providers under DORA

Katten Muchin Rosenman LLP on 8/20/2025

The European Supervisory Authorities (ESAs) recently published a comprehensive guide (Guide) on the oversight of critical information and communications technology (ICT) third-party service providers (CTPPs) under the EU...more

The EU Digital Operational Resilience Act (DORA): top 7 challenges for IT vendors

Hogan Lovells on 7/14/2025

The Digital Operational Resilience Act ("DORA") is the EU's latest legislative effort to enhance digital operational resilience across the financial sector through a harmonised set of rules for managing information and...more

DORA Compliance Part 2: Addressing Compliance Across Critical Operational Areas

Integreon on 4/4/2025

Introduction to DORA and its Implications - As of Jan.17, 2025, the European Union’s Digital Operational Resilience Act (DORA) became enforceable. This new regulatory framework significantly impacts financial institutions and...more

European Central Bank updates TIBER-EU framework to align with DORA RTS on TLPT

A&O Shearman on 2/25/2025

The European Central Bank (ECB) has published an updated version of the threat intelligence-based ethical red teaming framework (TIBER-EU framework) (dated January) to align with the Digital Operational Resilience Act (DORA)...more

European Commission rejects draft technical standards on sub-contracting ICT services under Digital Operational Resilience Act

A&O Shearman on 2/12/2025

The European Commission has published a letter (dated 21 January 2025) addressed to the Joint Committee of the European Supervisory Authorities (ESAs) rejecting certain draft regulatory technical standards (RTS) the ESAs...more

EU joint report on the feasibility for further centralization of reporting of major ICT-related incidents

A&O Shearman on 1/28/2025

The European Supervisory Authorities have published a joint report on the feasibility of further centralization of the reporting of major ICT-related incidents by financial entities to competent authorities. The ESAs' joint...more

Cybersecurity in the Financial Sector: EU’s Digital Operational Resilience Act Takes Effect

Mayer Brown on 1/20/2025

Beginning 17 January 2025, the Digital Operational Resilience Act (DORA) will apply to almost all EU financial entities, including banks, insurers and reinsurers, brokers , payment and electronic money institutions,...more

Entry into force of DORA on January 17, 2025: The CSSF will be at the heart of the compliance framework in Luxembourg

Goodwin on 1/17/2025

Digital Operational Resilience Act (DORA) aims to harmonize provisions related to cybersecurity and information and communication technology (ICT) risk management in the financial sector. Its scope covers nearly all entities...more

EU Digital Operational Resilience Act Priorities for 2025

Faegre Drinker Biddle & Reath LLP on 1/14/2025

Background - The Digital Operational Resilience Act (DORA), a European Union (EU) regulation that is set to transform how financial entities and their information technology (IT) service providers manage operational risks,...more

DORA Demystified: Dispelling 5 Myths for ICT Service Providers

Morrison & Foerster LLP on 12/2/2024

The EU’s Digital Operational Resilience Act (DORA) comes into force from 17 January 2025. Under DORA, in-scope regulated financial services (FS) businesses operating in the EU (Firms) face new cybersecurity requirements and...more

Understanding DORA: An Overview of the Digital Operational Resilience Act

Barnea Jaffa Lande & Co. on 10/9/2024

The Digital Operational Resilience Act (DORA) is an EU regulatory framework, aimed at enhancing the financial sector’s ability to withstand and recover from ICT (information and communication technology) disruptions....more

Preparing for the Digital Operational Resilience Act (“DORA”): Key Steps for Payments and Fintech Clients

Arnall Golden Gregory LLP on 10/8/2024

The Digital Operational Resilience Act (“DORA”), an EU regulation designed to bolster the resilience of financial entities against Information and Communications Technology (“ICT”) risks, entered into force on January 16,...more

The EU’s Digital Operational Resilience Act 2022/2554 (DORA)

BCLP on 9/23/2024

Long IT sub-contracting chains can make it hard for financial institutions to understand the vulnerabilities in their IT estate and the location of key functions (where these may be located in entities who do not have a...more

Digital Operational Resilience in the Financial Services Sector: EU and UK Update

K&L Gates LLP on 8/5/2024

With under six months to go until the European Union Digital Operational Resilience Act (DORA) becomes applicable on 17 January 2025, DORA implementation projects are running full steam ahead. DORA lays down uniform...more

Offensive Security Under the EU Digital Operational Resilience Act (DORA)

Venable LLP on 7/19/2024

The Digital Operational Resilience Act (DORA) regulation is part of the European Union’s (EU) strategy to enhance the overall stability of the EU financial system by ensuring that financial entities are resilient to digital...more

EU Cyber Legislation Puts Emphasis on Board Responsibility

Mayer Brown on 3/8/2024

What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial...more

Europe Daily News, 15 February 2024

Mayer Brown on 2/15/2024

COMPETITION - Prior notification of a concentration (Case M.11320 - CIisco/ Splunk) - Prior notification of a concentration (Case M.11455 - LGP / HG / IRIS)...more

What DORA Means for Fund Managers

Goodwin on 1/29/2024

Q: What is DORA? “DORA” stands for the Digital Operational Resilience Act, an EU regulation that creates a new framework for the EU financial sector with regard to information and communications technology (ICT)....more

AI in Europe: Road Map for Navigating the IP, Data Protection and Regulatory Considerations

Skadden, Arps, Slate, Meagher & Flom LLP on 9/19/2023

Organizations developing or using generative AI tools should implement cross-functional governance frameworks to develop and continuously monitor their use of such tools. From the earliest stages of generative AI use,...more

Upcoming EU Rules on Digital Operational Resilience

Pillsbury Winthrop Shaw Pittman LLP on 7/21/2023

There will be additional compliance obligations and mandatory contractual provisions introduced for financial entities and outsourced IT service providers. The new DORA seeks to strengthen the resilience of financial...more

Exploring DORA: EU Tightens IT Security Rules for the Financial Sector, Targeting "Critical" Third-Party Providers

K&L Gates LLP on 1/17/2023

In mid-December the European Union (EU) enacted new legislation aiming at harmonizing, and tightening, information technology (IT) security rules in the financial sector: Regulation (EU) 2022/2554 on digital operational...more

European Supervisory Authorities Publishes 2023 Work Programme

Cadwalader, Wickersham & Taft LLP on 10/11/2022

On September 30, the Joint Committee of the European Supervisory Authorities (“ESAs”) (being the EBA, EIOPA and ESMA) published its work programme for 2023 (dated 5 September 2022) (JC 2022 28). The stated priorities include...more

22 Results

View per page

Page: of 1

European Union › Information Technology › Financial Services Industry

"My best business intelligence, in one easy email…"