ch_2Level 1

Chapter II - ICT Risk Management

Chapter II of the Digital Operational Resilience Act (EU 2022/2554) establishes mandatory ICT risk-management requirements for financial entities, detailing governance structures, risk assessment processes, and security controls. It also obliges firms to conduct regular testing, maintain detailed documentation, and report significant ICT-related incidents to competent authorities.

GET/api/v1/systems/reg_dora/nodes/ch_2

Manual TranscriptionPublic Domain (EUR-Lex)Source

Hierarchy Explorer

Hierarchy ExplorerChevron to expand - click title to open

art_10Art 10 - Detection

art_11Art 11 - Response and recovery

art_5Art 5 - Governance and organisation

art_6Art 6 - ICT risk management framework

art_7Art 7 - ICT systems, protocols and tools

art_8Art 8 - Identification

art_9Art 9 - Protection and prevention

Cross-system equivalences0

No cross-system equivalences mapped for this node.

Report a data issue