EU-DORA-1-01
Risk Management
1 — Subject matter
Implement ICT risk management requirements
Description
Financial entities must implement and maintain information and communication technology (ICT) risk management systems and processes in accordance with the uniform requirements laid down by this...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
EU-DORA-1-02
Reporting
Report major ICT-related incidents to competent authorities
EU-DORA-1-03
Reporting
Report major operational or security payment-related incidents
EU-DORA-1-04
Requirement
Conduct digital operational resilience testing
EU-DORA-1-05
Requirement
Participate in information and intelligence sharing on cyber threats
EU-DORA-1-06
Risk Management
Implement sound management of ICT third-party risk
EU-DORA-1-07
Requirement
Comply with contractual arrangement requirements for ICT services
EU-DORA-1-08
Requirement
Comply with Oversight Framework for critical ICT third-party providers
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started