ch_5Level 1

Chapter V - Managing ICT Third-Party Risk

The Digital Operational Resilience Act (EU) 2022/2554, Chapter V sets out requirements for financial entities to identify, assess and monitor risks arising from third-party information-and-communication-technology (ICT) providers. It mandates contractual safeguards, ongoing oversight, and contingency planning to ensure that outsourced ICT services do not compromise the institution's operational resilience.

GET/api/v1/systems/reg_dora/nodes/ch_5

Manual TranscriptionPublic Domain (EUR-Lex)Source

Hierarchy Explorer

Hierarchy ExplorerChevron to expand - click title to open

art_28Art 28 - Key principles for managing ICT third-party risk

art_30Art 30 - Key contractual provisions

Cross-system equivalences0

No cross-system equivalences mapped for this node.

Report a data issue