On 11 July 2025, the European Securities and Markets Authority (ESMA) published its Final Report updating the Guidelines on outsourcing to cloud service providers (CSPs), to align with the Digital Operational Resilience Act (DORA), which came into effect on 17 January 2025. The Impact of DORA on Cloud Outsourcing The previous 2020 guidelines … [Read more...] about ESMA updates guidelines on cloud outsourcing in line with DORA
Cybersecurity & Operational Resilience
Last Minute Tips before DORA’s Implementation
The Digital Operational Resilience Act (DORA), a landmark regulation focusing on resilience in the financial sector, will come into full effect on January 17, 2025. The Central Bank of Cyprus (CBC) has reminded all licensed financial entities of the approaching implementation deadline. This follows an announcement from the European Supervisory … [Read more...] about Last Minute Tips before DORA’s Implementation
DORA: A Practical Guide for Financial Institutions and ICT Service Providers
The Digital Operational Resilience Act (DORA), effective in January 2025, mandates stricter cybersecurity measures aimed at enhancing the operational resilience of financial institutions and ICT service providers by establishing a unified approach to managing ICT risks. As we near the effective date, we’ve put together a comprehensive guide to help … [Read more...] about DORA: A Practical Guide for Financial Institutions and ICT Service Providers
Dubai Financial Services Authority (DFSA) undertakes inaugural crisis simulation exercise for authorised firms in collaboration with Control Risks Group
By Kyriakos Christofidis Assistant Director, Complyport On 25 May 2023, the Dubai Financial Services Authority (DFSA) engaged Control Risks Group, a global risk and strategic consulting firm specialising in political, security and integrity risk, in the preparation and execution of an inaugural crisis simulation exercise for 17 of its … [Read more...] about Dubai Financial Services Authority (DFSA) undertakes inaugural crisis simulation exercise for authorised firms in collaboration with Control Risks Group
Understanding the New EU Criteria for Classifying Cyber Threats under DORA
By Pantelis Angelides CEO, Quadprime The European Commission has introduced new Regulatory Technical Standards (RTS) to supplement the DORA Regulation, aimed at classifying ICT-related incidents and cyber threats within the EU financial sector. The RTS provides criteria for determining major incidents and significant cyber threats, streamlining … [Read more...] about Understanding the New EU Criteria for Classifying Cyber Threats under DORA