The European Banking Authority (EBA) issued technical standards under the Digital Operational Resilience Act (DORA).
DORA introduces ICT risk management obligations, incident reporting harmonization, and oversight of critical third-party ICT providers. Financial institutions must implement governance frameworks ensuring operational continuity and cyber resilience.
This regulation integrates cybersecurity, data protection, and operational governance into a unified compliance model, raising expectations for documentation, testing, and board accountability.
Source: European Banking Authority
https://www.eba.europa.eu