Operational resilience is top of mind for every regulator and market participant in 2025. The rise in cyberattacks and ransomware attacks, along with the amplified industry focus on decreasing operational risk, have resulted in an increase in regulations like DORA. This paper by Virginie O’Shea of Firebrand Research examines the coming compliance regulations and what that means for financial services firms now and in the future.
Along with an overview of the regulations, this paper outlines ways that firms can proactively meet these compliance requirements through a range of best practices, including:
- Protection and review: Assess existing dependencies and resilience of infrastructure – both on cloud and on premise.
- Readiness for changes: Examine the need for multiple layers of data protection, mirroring of environments and workflows for mission critical systems with back-up environments.
- Detection of attacks: Scan for attacks and cyber-weaknesses as threats evolve.
- Recovery: Prepare for recovery within the regulatory timeframes.