DigitalTrust® Professional (DTP®) DORA Foundation Certificate

Course Outline

The Digital Operational Resilience Act (DORA) is an EU regulation that entered into force on 16 January 2023 and will apply as of 17 January 2025.

It aims at strengthening the IT security of financial entities such as banks, insurance companies and investment firms and making sure that the financial sector in Europe is able to stay resilient in the event of a severe operational disruption. DORA brings harmonisation of the rules relating to operational resilience for the financial sector applying to 20 different types of financial entities and their ICT third-party service providers.

In order to achieve a high common level of digital operational resilience, the EU Digital Operational Resilience Act (DORA) Regulation lays down uniform requirements concerning the security of network and information systems supporting the business processes of financial entities as follows:

(a) requirements applicable to financial entities in relation to:

• information and communication technology (ICT) risk management;
• reporting of major ICT-related incidents and notifying, on a voluntary basis, significant cyber threats to the competent authorities;
• reporting of major operational or security payment-related incidents to the competent authorities by financial entities;
• digital operational resilience testing;
• information and intelligence sharing in relation to cyber threats and vulnerabilities;
• measures for the sound management of ICT third-party risk;

(b) requirements in relation to the contractual arrangements concluded between ICT third-party service providers and financial entities;

(c) rules for the establishment and conduct of the Oversight Framework for critical ICT third-party service providers when providing services to financial entities;

(d) rules on cooperation among competent authorities, and rules on supervision and enforcement by competent authorities in relation to all matters covered by this Regulation.

This 1-day, instructor led, non-examinable DigitalTrust® Professional (DTP®) DORA Foundation Certificate equips participants with an understanding of what is required to build and maintain digital trust in the modern business world.

Learning Outcomes

On completion of the DigitalTrust® Professional (DTP®) DORA Foundation Certificate participants will be able to:

• Explain the fundamentals of the Digital Operational Resilience Act (DORA)
• Explain the scope of DORA
• Understand common approaches to risk management and the risk management process
• Identify the mandatory requirements within DORA
• Identify the mandatory documented requirements within DORA
• Understand the practicalities of control implementation and DORA compliance

Prerequisites

There are no prerequisites for this Foundation level course. The course is suitable for all employees at all levels seeking foundation level knowledge on the Digital Operational Resilience Act.

Participants are provided with:

• DigitalTrust® Professional (DTP®) DORA Foundation Certificate courseware including links to further related reading and resources
• DigitalTrust® Professional (DTP®) DORA Foundation Certificate Certificate of Completion
• DigitalTrust® Professional (DTP®) DORA Foundation Certificate digital badge