Digital Operational Resilience in the European Union

Businesses require clarity and consistency to properly and effectively adopt strong cybersecurity standards. The EU's new Digital Operational Resilience Act (DORA) takes these principles seriously as they apply to cybersecurity rules for financial services companies and their Information and Communication Technology (ICT) service providers, yet further progress must be made. For DORA to be successful, policymakers must avoid conflicting requirements with other pieces of cybersecurity legislation and clarify certain definitions to ensure legal certainty.