CYP SEC DORA Implementation

On Nov. 13, CYP SEC informed of key aspects re DORA application.

  • CYP SEC issued an informative document with keys aspects re DORA implementation.
  • Follows EU CNCL Dec. 2022 final Dir 2022/2556 and Reg 2022/2554 on digital operational resilience for the financial sector in the Official Journal, see #137568.
  • Main Points
  • Presentation of legal framework; call for entities to be updated with new developments via the European Supervisory Authorities (ESAs) websites; DORA's application scope.
  • Motivation and justification of the framework; proportionality principle's application.
  • Main areas of DORA reg; ICT-related incidents; digital operational resilience testing.
  • ICT third-party risk; information sharing; oversight of critical third-party providers.
  • Effectiveness
  • The regulation entered into force on Jan. 16, 2023 and applies as of Jan. 17, 2025.

Regulators CYP SEC
Entity Types B/D; Bank; CNSM; Depo; Exch; IA; Ins; Inv Co; MSB
Reference PR, 11/13/2024; DORA Dir 2022/2556, Reg 2022/2554
Functions BCS; Compliance; Cyber; Financial; Legal; Operations; Outsourcing; Privacy; Product Design; Record Retention; Reporting; Risk; Technology; Treasury
Countries Cyprus
Category
State
Products Banking; Cards; Cryptocurrency; Equity; Fixed Income; Fund Mgt; Insurance; Payments; Securities
Regions EMEA
Rule Type Final
Rule Date 11/13/2024
Effective Date 1/17/2025
Rule Id 233414
Linked to Rule :137568
Reg. Last Update 11/13/2024
Report Section EU

Last substantive update on 11/18/2024