DORA: Strengthening Digital Operational Resilience

Initiated by the European Commission to secure digital operational resilience in the financial industry, the DORA legislation is expected to be adopted in 2023.

Most financial institutions will be required to make changes as a result of DORA. We can help you identify what you need to do and implement necessary changes to stay compliant.

We help you navigate by providing you with regulatory updates, refined analysis and actionable insights.

DORA: Strengthening Digital Operational Resilience

Upcoming webinar

DORA | The Future Management of ICT Third-Party Providers

In this webinar, we will discuss what implications DORA has for your ICT third-party management, what capabilities you will need to build internally to match these requirements, and how you will be able to use this to your benefit in your management of risks and third-party providers.

20/4 11-12

For more information please click here.

DORA Defined

The EU’s Digital Operational Resilience Act (DORA) is part of the Digital Finance Package (DFP) and aims to consolidate ICT risk and outsourcing requirements across EU into one single legislative act.

Designed to support the potential of digital finance while mitigating associated risks, DORA came into effect in December 2022. DORA applies to almost all financial entities, including critical third-party ICT service providers.

Introduction & Explanations



We support our clients with customised advisory and implementation of regulatory DORA requirements

Insights & Implications

5 Key Challenges

FCG have identified five main challenges your financial services organisation could face in the implementation of DORA.

Future Roles of CTO & CIO

CTOs and CIOs are experiencing an increased workload as ICT and security risk is one of the areas receiving most attention.

Holistic Multi-Vendor Strategy

Designing a holistic ICT multi-vendor strategy is a complex process, requiring a high level of knowledge and competence.

Three Lines of Defense

DORA requires financial entities to structure ICT risk management according to the three lines of defense model.

FCG help navigate


FCG have an experienced and dedicated consultant team in information security and/or outsourcing.


FCG pro-actively advise our clients with strategy, governance, internal control and organisational challenges followed by regulatory requirements in ICT.


FCG provide DORA and ICT services to banks, FinTech, insurance companies, investments firms and third-party vendors across Europe.

Our services


Fredrik Ohlsson
Partner Operational Risk/ICT


Johan Røthe
Partner & Head of Norway


Timo Tamminen
Partner Operational Risk/ICT

Risk & Finance

FCG provides services to banks, FinTech, insurance companies and investments firms within strategy, governance, internal control, and organisational issues in ICT.

Client stories

Let's connect

DORA: Strengthening Digital Operational Resilience DORA: Strengthening Digital Operational Resilience
I want an FCG expert to contact me about:
DORA: Strengthening Digital Operational Resilience

By submitting, you consent to our privacy policy

Thank you for connecting with us

An error occurred, please try again later

This website is using cookies

We use cookies for functionality and analysis.

Read more about cookies
Accept cookies

Cookie settings

Read more about cookies
DORA: Strengthening Digital Operational Resilience DORA: Strengthening Digital Operational Resilience

These cookies are essential and required for this site to work properly. Without them we will not be able to assure that our website and services functions correctly.

DORA: Strengthening Digital Operational Resilience DORA: Strengthening Digital Operational Resilience

Analytical cookies are used by third party web services to measure visitors traffic and helps us to evaluate the performance of this website. The collected data is used for the purpose to improve the visitors experience.