Third-Party Cyber Risk Management: A Game-Changer Called DORA

Third-party vendors are often the weakest link in your organization’s security ecosystem, as most security leaders don’t have good visibility or oversight of their partner’s security controls. The increasing number of cyber threats, such as the ransomware attacks that multiplied during 2021, proves that managing third-party risk is now an essential part of your overall cybersecurity strategy. The Digital Operational Resilience Act (DORA) is a new European regulatory framework to help harmonize how the different EU member states' financial supervisors address ICT risk. It will soon require banks and firms in the global financial industry to mature their third-party risk management programs - and it will also apply to the critical Information and Communication Technology service providers they are working with. DORA is a game-changer that will help bring confidence and resilience to the digital EU. Join Bitsight and (ISC)2 on February 10, 2022 at 1:00 p.m. GMT as we look at the need to address both the cyber security threats and the requirements for compliance with DORA and how European security leaders must take steps to implement robust third-party risk management programs. We’ll discuss topics such as: · Why third party risk management is necessary in today’s connected world · Why you should focus on vendor risk instead of vendor threats · How to set up a best-in-class TPRM program · Why vendor assessments alone are not enough · How to comply with DORA