Tag: dora
-
Hiscout aktualisiert sein Informationssicherheit-Modul mit neuen regulatorischen Anforderungen in Bezug auf NIS2 und DORA gemäß ISO27001
Als führender Anbieter von Softwarelösungen für Governance, Risk und Compliance (GRC) hat Hiscout im aktuellen Release 3.7.0 im Hinblick auf neue regulatorische Anforderungen wie NIS2 und DORA den Schwerpunkt auf die Aktualisierung des ISM-Moduls (Informationssicherheit) mit Fokus auf die ISO27001 gelegt. Mit neuen Features wie einem mandantenfähigen Policy-Management und einem Auslagerungsmanagement werden hohe Compliance-Standards erfüllt.…
-
3 Steps to Take to Meet DORA Compliance Before April 30, 2025
Chief Information Security Officers (CISOs) face an important milestone on April 30th, 2025: ensuring their organizations are ready to meet the strict requirements of the EU’s Digital Operational Resilience Act (DORA). By April 30th, companies must have established comprehensive registers of information related to their Information and Communication Technology (ICT) services. This involves not only……
-
How Slashing the SAT Budget Is Appreciated By Hackers
The Growing Need for Cybersecurity Awareness Training (SAT) In today’s rapidly evolving cyber threat landscape, organizations are increasingly recognizing the critical importance of Cyber Security Awareness Training (SAT) as a fundamental defense strategy. Regulatory changes like NIS2 and DORA further emphasize this need for robust cybersecurity initiatives. However, despite this acknowledgment, many organizations are still……
-
Wettbewerbsvorteil statt Compliance-Übung Warum DORA mehr ist als ein Hürdenlauf
Die digitale Transformation im Finanzsektor schreitet unaufhaltsam voran und mit ihr wachsen die Anforderungen an die IT-Sicherheit. Mit dem Digital Operational Resilience Act (DORA) hat die EU nun einen wegweisenden Regulierungsrahmen geschaffen, der die digitale Widerstandsfähigkeit von Finanzinstituten stärken soll. Die neue Verordnung betrifft nicht nur Banken und Versicherungen, sondern den gesamten Finanzsektor inklusive […]…
-
DORA ist mehr als nur ein weiteres Regelwerk: Wettbewerbsvorteil statt Compliance-Übung
[link text=”DORA” id=”39656″] markiert einen Wendepunkt in der Regulierung digitaler Resilienz im Finanzsektor. Der Erfolg in der Umsetzung wird maßgeblich davon abhängen, wie gut es Unternehmen gelingt, technische, prozedurale Lösungen wie IGA mit organisatorischen Maßnahmen und einem Risikomanagement zu verbinden. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-ist-mehr-als-nur-ein-weiteres-regelwerk-wettbewerbsvorteil-statt-compliance-uebung/a39736/
-
CIOs and CISOs grapple with DORA: Key challenges, compliance complexities
Tags: access, automation, banking, business, cio, ciso, communications, compliance, control, country, cyber, cybersecurity, data, dora, finance, framework, GDPR, governance, jobs, law, monitoring, network, nis-2, penetration-testing, privacy, regulation, resilience, risk, risk-management, service, skills, supply-chain, technology, threat, tool, training, vulnerabilityIn force since January, the Digital Operational Resilience Act (DORA) has required considerable effort from CIOs and CISOs at 20 types of financial entities to achieve compliance. For many, the journey is not complete.”In the past months, financial entities targeted by DORA have been busy internally defining roles and responsibilities related to ICT security, identifying…
-
21% of CISOs pressured to not report compliance issues
Tags: awareness, breach, business, ceo, ciso, compliance, control, corporate, cybersecurity, data, dora, finance, framework, governance, incident response, infrastructure, insurance, law, nis-2, regulation, resilience, risk, security-incident, trainingCISOs are increasingly getting caught between business pressures and regulatory obligations, leaving them struggling to balance corporate loyalty and legal accountability.To wit: One in five (21%) security leaders have been pressured by other executives or board members not to report compliance issues at their companies, according to a recent study by security vendor Splunk.The same…
-
Finanzsektor: Herausforderungen und zugleich Chancen durch DORA
Tags: doraFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/finanzsektor-herausforderungen-chancen-dora
-
DORA-Rettungsanker: Automatisierte Tests
Seit dem 17. Januar 2025 ist der Digital Operational Resilience Act (DORA) in Kraft. Ohne nationale Umsetzungsgesetze gilt die Verordnung direkt und einheitlich in allen EU-Mitgliedstaaten. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-rettungsanker-automatisierte-tests/a39656/
-
DORA Compliance Must be a Top Priority for US Financial Institutions
In an era where digital resilience determines market survival, the European Union’s Digital Operational Resilience Act (DORA) has emerged as a global benchmark for financial sector cybersecurity. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/dora-compliance-must-be-a-top-priority-for-us-financial-institutions/
-
DORA erfordert robuste Risikomanagementprozesse über die gesamte Lieferkette hinweg
Der Finanzsektor ist mit regulatorischen Anforderungen bestens vertraut, doch DORA stellt insbesondere im Bereich Drittanbieter und Lieferketten neue Herausforderungen dar. Eine durchgehende Compliance erfordert die Anpassung von Risikomanagementprozessen und Service-Level-Agreements. Ein Kommentar von Andre Troskie, EMEA Field CISO bei Veeam. Im Gegensatz zu anderen Wirtschaftsbereichen, die ebenfalls die NIS2 einhalten müssen, sind dem Finanzsektor strenge Vorschriften…
-
US takes aim at healthcare cybersecurity with proposed HIPAA changes
Tags: access, authentication, best-practice, breach, compliance, control, csf, cyber, cyberattack, cybersecurity, data, defense, detection, dora, encryption, finance, framework, government, group, healthcare, HIPAA, incident response, infrastructure, insurance, intelligence, jobs, law, malware, mfa, network, nist, penetration-testing, phishing, privacy, ransom, ransomware, regulation, resilience, risk, security-incident, service, skills, technology, threat, tool, update, usa, vulnerability, vulnerability-managementThe US Department of Health and Human Services (HHS) has launched a consultation on stricter rules for the safeguarding of electronic health records.The proposed revamp of security rules covered by the Health Insurance Portability and Accountability Act (HIPAA) is designed to address the increased risk from cyberattacks such as ransomware against healthcare environments.The revamped rules…
-
Security chiefs whose companies operate in the EU should be exploring DORA now
Tags: attack, business, ciso, compliance, conference, corporate, cyber, cybersecurity, data, detection, dora, finance, framework, GDPR, incident, network, regulation, resilience, risk, service, technology, threat, vulnerabilityIf your enterprise operates in Europe, you should care about the Digital Operational Resilience Act (DORA), which took effect on January 17. DORA, also known as Directive (EU) 2022/2555 of the European Parliament, aims to enhance and build the EU’s cybersecurity capabilities and it has been hanging like the Sword of Damocles over the heads…
-
Europas neue Cyber-Sicherheitsverordnung stellt nicht nur den Finanzsektor vor Herausforderungen
First seen on datensicherheit.de Jump to article: www.datensicherheit.de/dora-europas-neuheit-cyber-sicherheitsverordnung-finanzsektor-herausforderungen
-
Midsize firms universally behind in slog toward DORA compliance
Tags: ai, business, ciso, compliance, cybersecurity, dora, finance, germany, insurance, intelligence, monitoring, resilience, risk, service, skills, technology, toolBeginning Friday, Jan. 17, all EU financial institutions are now required to operate in compliance with the Digital Operational Resilience Act (DORA). The EU directive aims to increase cybersecurity in the financial industry. However, studies show that many companies are still struggling with implementation.According to a November 2024 survey from metafinanz, the average level of…
-
DORA Takes Effect: Financial Firms Still Navigating Compliance Headwinds
The EU’s DORA regulation is in effect as of January 17, with mixed evidence around compliance levels among financial firms First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/dora-financial-firms-compliance/
-
DORA’s Deadline Looms: Navigating the EU’s Mandate for Threat Led Penetration Testing
With DORA’s January 2025 compliance deadline approaching, financial institutions must embrace rigorous testing, tailored threat profiles, and continuous vigilance to safeguard against cyber threats. The post DORA’s Deadline Looms: Navigating the EU’s Mandate for Threat Led Penetration Testing appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/doras-deadline-looms-navigating-the-eus-mandate-for-threat-led-penetration-testing/
-
Einige Finanzinstitute sind unzureichend vorbereitet
Ein ganzheitlicher und proaktiver Ansatz ist entscheidend, um die potenziellen geschäftlichen Auswirkungen eines Cybervorfalls zu minimieren. Anbieter wie Armis bieten hierbei maßgeschneiderte Lösungen, die Transparenz in IT-, OT- und IoT-Umgebungen schaffen und eine proaktive Risikominderung unterstützen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-einige-finanzinstitute-sind-unzureichend-vorbereitet/a39468/
-
How Ephemeral on-demand data can improve DORA DevOps scores
Understand the performance metrics used to produce the DORA scores and how on-demand data from Tonic Ephemeral, as well as the integration between Ephemeral and Tonic Structural, can improve the DORA score for your development teams First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/how-ephemeral-on-demand-data-can-improve-dora-devops-scores/
-
DORA, oder wie steht es um die IT-Sicherheit bei Banken?
Tags: doraDie IT-Sicherheit der Banken ist ein essentielles Thema und die Funktionalität und Zuverlässigkeit des internationalen Zahlungssystems sicherzustellen. Aber wie sicher ist die IT der Bankenlandschaft? In der EU gibt es ja DORA, was die Sicherheit verbessern soll. Was ist DORA? … First seen on borncity.com Jump to article: www.borncity.com/blog/2025/01/05/dora-oder-wie-steht-es-um-die-it-sicherheit-bei-banken/
-
KI-Tool für die Finanzbranche – Deloitte hilft bei der Einhaltung von DORA-Anforderungen
First seen on security-insider.de Jump to article: www.security-insider.de/deloitte-ki-unterstuetzung-finanzinstitute-dora-anforderungen-a-c4263d008af16e5e9f7929d4525343da/
-
DORA Regulation (Digital Operational Resilience Act): A Threat Intelligence Perspective
The Digital Operational Resilience Act (DORA) is coming in 2025. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/01/dora-regulation-digital-operational-resilience-act-a-threat-intelligence-perspective/
-
Hacker knacken das Smart Home
Tags: android, bsi, cyber, cyersecurity, data, dora, firmware, germany, hacker, incident response, Internet, mail, malware, passkey, password, resilience, risk, security-incident, service, update, vulnerabilityloading=”lazy” width=”400px”>Im Smart Home werkeln immer mehr Devices mit Internet-Anschluss für Hacker ein lohnendes Ziel. Andrey Suslov shutterstock.comIoT-Geräte wie digitale Bilderrahmen oder Mediaplayer sind immer häufiger das Ziel von Cyberkriminellen. Viele dieser mit dem Internet verbundenen Geräte weisen Schwachstellen auf und können leicht mit Schadsoftware infiziert werden. Das Bundesamt für Sicherheit in der Informationstechnik (BSI)…
-
NIS2 vs. DORA: Key Differences and Implications for Cybersecurity and Operational Resilience
Discover the key differences between the EU’s NIS2 and DORA frameworks and what they mean for your business. First seen on securityboulevard.com Jump to article: securityboulevard.com/2024/12/nis2-vs-dora-key-differences-and-implications-for-cybersecurity-and-operational-resilience/
-
DORA steht vor der Tür
Tags: ai, cisco, cloud, compliance, computing, crypto, cyberattack, cybersecurity, cyersecurity, detection, dora, endpoint, infrastructure, monitoring, resilience, risk, risk-management, service, threat, tool, vulnerability, zero-trustsrcset=”https://b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?quality=50&strip=all 12500w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=300%2C168&quality=50&strip=all 300w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=768%2C432&quality=50&strip=all 768w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1024%2C576&quality=50&strip=all 1024w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1536%2C864&quality=50&strip=all 1536w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=2048%2C1152&quality=50&strip=all 2048w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=1240%2C697&quality=50&strip=all 1240w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=150%2C84&quality=50&strip=all 150w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=854%2C480&quality=50&strip=all 854w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=640%2C360&quality=50&strip=all 640w, b2b-contenthub.com/wp-content/uploads/2024/12/shutterstock_1942670248.jpg?resize=444%2C250&quality=50&strip=all 444w” width=”1024″ height=”576″ sizes=”(max-width: 1024px) 100vw, 1024px”>DORA soll die Cybersicherheit in der Finanzbranche erhöhen. Vector Image Plus Shutterstock.comAb 17. Januar 2025 sind alle Finanzdienstleister in der EU verpflichtet, den Digital Operational Resilience Act (DORA)…
-
Cybersicherheits-Gesetze – Schritt für Schritt DORA-konform
First seen on security-insider.de Jump to article: www.security-insider.de/schritt-fuer-schritt-dora-konform-a-d2ebcfd35f096d5b776df456055fc020/
-
With DORA approaching, financial institutions must strengthen their cyber resilience
The clock is ticking for financial institutions across the EU as the January 17, 2025, deadline for the Digital Operational Resilience Act (DORA) approaches. This regulation … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2024/12/16/financial-institutions-dora-requirements/
-
Eine Chance für höhere Cybersicherheit in der Finanzbranche
Bedrohungsakteure sind kontinuierlich mit der Weiterentwicklung ihrer Angriffe auf KRITIS-Betreiber wie Finanzunternehmen beschäftigt. Deshalb ist der Bedarf an Regularien zur Verbesserung der Sicherheitsinfrastruktur und der Widerstandsfähigkeit wichtiger denn je. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/dora-eine-chance-fuer-hoehere-cybersicherheit-in-der-finanzbranche/a39261/
-
How Red Teaming Helps Meet DORA Requirements
The Digital Operational Resilience Act (DORA) sets strict EU rules for financial institutions and IT providers, emphasizing strong… First seen on hackread.com Jump to article: hackread.com/how-red-teaming-helps-meet-dora-requirements/