Every few years, the European Banking Authority (EBA) holds up a mirror to the banking sector, asking a straightforward yet critical question: “What if?” The 2025 EU-wide stress test is no different—but this time, the stakes feel particularly high.
On January 17, 2025, the EU takes a significant step towards fortifying the financial sector’s ability to weather the storm of today’s digital and cyber risks with the official rollout of the Digital Operational Resilience Act (DORA). This isn’t just another regulation—it’s a bold response to the growing recognition that the financial sector’s resilience is now as important as its profitability.
For professionals in the realm of risk, compliance, and IT security, the role of the Chief Information Security Officer (CISO) has long been a cornerstone of organizational defense. But as technology evolves and risks become more interconnected, the role itself is undergoing a significant transformation. In a recent analysis in my piece The Death of the CISO: A Eulogy & Reincarnation, I discussed the impending end of the traditional CISO in favor of a more expansive role — the Digital Risk & Resilience Officer (DRRO).
January 17, 2025, marks the day the Digital Operational Resilience Act (DORA) stops being a talking point and becomes a reality. While financial institutions across Europe have been gearing up for this moment, the Dutch Authority for the Financial Markets (AFM) has outlined its plans for supervision and what firms can expect in the year ahead. If you haven’t started implementing DORA’s requirements yet, you’re already behind.
A new report from KPMG reveals that digital transformations are finally gaining momentum, with nearly 90% of US companies reporting improved performance and profitability from their tech investments. This is a significant leap from last year, where only 45% of businesses were seeing tangible benefits. As artificial intelligence (AI), enhanced data analytics, and third-party technology providers continue to drive these transformations, companies are not only optimizing their internal processes but are also investing in technology that helps them manage risks, meet regulatory requirements, and stay competitive.
The 2020s have been a relentless rollercoaster for businesses. From the pandemic to supply chain breakdowns, inflationary spirals, geopolitical tensions, and the meteoric rise of new technologies, disruption has rewritten the rules of survival. Yet, for some organizations, these upheavals are more than just hurdles—they are catalysts for transformation and growth.
Time is slipping away for proprietary trading firms (PTFs) and other financial institutions preparing to comply with the Digital Operational Resilience Act (DORA). With the January 17, 2025, implementation date looming, the Dutch Authority for the Financial Markets (AFM) has issued a candid report that paints a mixed picture of readiness.