DORA: Digital Operational Resilience Act - challenges and opportunities

The Digital Operational Resilience Act (DORA) will add to the plethora of regulations for the IT of financial companies from January 2025. As BaFin's existing regulatory requirements (BAIT, ZAIT, KAIT, VAIT; XAIT for short), among others, served as a template for this, many companies should be well prepared. For everyone else, there is plenty of need for action.

The financial sector is confronted with a range of regulatory requirements that are tailored by BaFin to the respective business area. The EU's Digital Operational Resilience Act (DORA) now supplements these existing national requirements and creates a uniform framework.