The DORA Regulation Readiness Report

Length: 12 pages | Format: PDF

With the Digital Operational Resilience Act (DORA) now in force, every financial institution and critical third-party provider must demonstrate resilience against digital threats. Our research shows that some sectors were prepared, while others lagged behind, which can lead to heavy fines and reputational risk.

The DORA Readiness Report benchmarks nine financial sub-sectors, helping you see how your sub-sector is performing and where your company stands against the predictions.

You’ll learn about:

The key requirements of DORA
How different sectors score on the DORA Readiness Index
The cost of non-compliance
Practical actions to close resilience gap

Highlights from the report:

54%

of global financial institutions reported cyber-attacks leading to stolen or destroyed data in the past year.

£44 billion

has been lost by British businesses to cyberattacks over the last five years.

66%

of organisations predict AI and machine learning will be their biggest cybersecurity threat by 2025.

$25 million

was stolen from UK engineering firm Arup in the world’s largest known deepfake scam (2024).

How can compliance training help?

Our survey found that cybersecurity training is patchy among many organisations, despite the well-known risks. But an organisation’s commitment to delivering ongoing and engaging training more often than not reflects its wider culture. Those who empower employees to understand the threat, make good decisions, and flag up any concerns stand a better chance of protecting their systems and data, compared to those who treat training as a tick-box exercise or fail to deliver it regularly (or at all).

So, as you’ll see in our report, training enables firms to embed good practices in their teams and create a healthy culture of compliance, not complacency.

Get your copy