DORA Podcast Series

In this episode, our partners Hinal Patel, Sophie Sheldon (London), and Camille Saettel (Luxembourg) explore the necessary actions companies must undertake following a Crowdstrike-style IT outage under DORA, effective 17 January 2025. They will guide listeners through the process, from initial response strategies and regulatory notifications to mitigation efforts and post-incident analysis. Tune in as our team dissects DORA's requirements, providing key insights and advice for financial institutions dealing with IT disruptions in the digital era.

In this episode, partner Derek Lawlor provides a summary of the final draft RTS on classification of major incidents and significant cyber threats.

In this episode, partner Hinal Patel provides a summary of the final draft RTS specifying the policy on ICT services supporting critical or important functions.

In this episode, partner Eric Le Quellenec provides a summary of the final draft RTS on ICT Risk Management Framework and on simplified ICT Risk Management Framework.

In this episode, partner Cathrine Foldberg Møller and associate Maya Coumes provide a summary of the final draft RTS on subcontracting ICT services supporting critical or important functions.

In this episode, partners Derek Lawlor and Sophie Sheldon provide a summary of the final draft RTS on Threat-Led Penetration Testing (TLPT), including some key principles when thinking about the robust requirements set by DORA.

In this episode, partners Christopher Götz and Jaap Templeman discuss the final report on the RTS for major incident reporting, detailing the content and timelines for notifications and reports of major ICT-related incidents.