Digital Operational Resilience Act (DORA) – Instruction (Executive Version)
Über den Vortrag
Der Vortrag „Digital Operational Resilience Act (DORA) – Instruction (Executive Version)“ von Lecturio Online Courses ist Bestandteil des Kurses „Digital Operational Resilience Act (DORA) – Instruction (Executive Version)“.
Quiz zum Vortrag
What is the DORA? (Only one answer is correct.)
- An EU regulation to improve the digital resilience of financial organisations
- A national law on data protection regulation in Germany
- A voluntary guideline for the promotion of IT innovations
- A security standard for IT service providers outside the financial sector
Which companies are affected by the DORA? (Several answers are correct.)
- Banks and insurance companies
- IT service providers for financial companies
- Providers of crypto value services
- Food manufacturers
What are the core requirements of the DORA regulation? (Several answers are correct.)
- ICT risk management
- Testing digital resilience
- ICT occupational health and safety management
- Tax transparency
What requirements does DORA place on third-party providers of IT services? (Several answers are correct.)
- They must carry out regular safety audits.
- Contracts must contain minimum safety and control requirements.
- Financial companies must consider alternative service providers.
- Financial companies may work only with EU-based IT service providers
A financial company stores customer data with a cloud service provider. The cloud service provider becomes the victim of a cyber-attack. What is the company's first duty under DORA? (Only one answer is correct.)
- Initiate an internal investigation to determine whether its own systems are affected
- Change its provider and ignore the problem
- Issue an official statement to the press within 72 hours
- Inform the competent authorities within 48 hours
A payment service provider uses only a single cloud provider for its entire IT infrastructure. What risks does this pose according to DORA? (Multiple answers are correct.)
- A cyber-attack on the provider could also jeopardise the financial company's data and systems.
- In the event of an attack, the entire operation could be paralysed
- There is no risk if the cloud provider maintains effective security measures.
- The company violates DORA because only multi-cloud solutions are allowed
A financial company regularly tests the resilience of its IT systems. Which measures are particularly important in the context of DORA? (Several answers are correct.)
- Penetration tests to identify vulnerabilities
- Regular gap analyses to review existing security measures
- Threat-led penetration testing (TLPT) for critical functions at least every three years
- Carrying out a general safety assessment once a year is sufficient
Dozent des Vortrages Digital Operational Resilience Act (DORA) – Instruction (Executive Version)
Lecturio Online Courses
Lecturio provides sustainable, simple and cost-efficient continuing education and training to companies and private customers. The e-learning catalogue consists of more than 7000 video-based courses covering over 80 topics. The focus is on compliance, leadership, project management, distribution, and medicine. Most of private customers use Lecturio in parallel to their studies and to prepare for their exams in medicine and law. Lecturio provides practical video-based online training—in German and English. Thousands of quiz questions help to measure and assess the learning success. Lecturio courses are available on all devices—and even offline with the iOS and Android app. Lecturio’s mission is to help companies and private customers to develop their full potential.
Kundenrezensionen
5,0 von 5 Sternen
| 5 Sterne |
|
5 |
| 4 Sterne |
|
0 |
| 3 Sterne |
|
0 |
| 2 Sterne |
|
0 |
| 1 Stern |
|
0 |
