Under DORA, financial entities must evaluate their ICT vendors’ criticality and verify that these vendors meet the necessary standards to mitigate risks effectively. This means ensuring that your vendor partners have robust business continuity plans, resilience measures, and appropriate incident response strategies in place. But it doesn’t stop there—you must also confirm that the vendors’ operations are aligned with your own resilience requirements.

Quote

Sources

Announcing the Launch of the COR Compliance Package: Stay Ahead of DORA Regulations