Skip to main content
DORA Auditor

Article 1: Subject matter

Last updated: 1 authoritative sourceDORA Auditor Editorial Team

Article 1 sets out that DORA lays down uniform requirements for the security of network and information systems supporting the business processes of financial entities, covering ICT risk management, incident reporting, resilience testing, third-party risk, and information sharing.

Chapter I, General provisions

Key points

  • Establishes uniform ICT resilience requirements across the EU financial sector
  • Introduces the concept of digital operational resilience
  • Frames the five pillars addressed by the regulation

Read the official text

This is an editorial summary. Read the binding text of Article 1 in the consolidated regulation on EUR-Lex.

Sources

  1. Regulation (EU) 2022/2554 (DORA), EUR-Lex