DORA Digest Newsletter

Our Clients

The Digital Operational Resilience Act, or DORA, is a new European regulation that aims to improve the security and resilience of the digital capabilities of financial entities and information and communications technology (ICT) service providers in the EU. It came into force on 16 January 2023 and organisations affected by it have until January 2025 to meet its requirements.

DORA applies to more than 22,000 financial entities and ICT service providers operating within the EU, as well as the ICT infrastructure supporting them from outside the EU.

DORA covers topics such as ICT risk management, reporting on ICT-related incidents, digital operational resilience testing, management of third-party risk, and information and intelligence sharing.

Sign up now to receive our DORA Digest that covers these topics and keeps you up to date as the countdown to compliance begins in earnest.

Subscribe to our newsletter

Insights

What PE Firms Should Look for When Doing Cyber Deal Due Diligence

18.11.2025

5 min read

5 Key Takeaways from a Deal Hacker: What PE Firms Should Look for When Doing Cyber Deal Due Diligence

Are your private equity deals safe from cybercriminals? The answer is very much ‘no’. Deals are being compromised, money is being lost, and reputations are being affected.

Why Cybersecurity Due Diligence is Critical to Deal Completion

16.10.2025

3 min read

Why Cybersecurity Due Diligence is Critical to Deal Completion

It’s a common story: after months of meticulous financial, operational, and market analysis, a critical finding emerges in the final weeks before deal closure – threatening what seemed like a near-certain transaction with a three-month delay.

15.10.2025

DORA Compliance Checklist: Practical Guidance for Q4 and 2026

Our structured, expert-led checklist, will help you to prioritise and demonstrate readiness to supervisors and regulators.

Ransomware at Europe’s Airports: Case for Community driven Third Party Risk Management

22.09.2025

4 min read

Ransomware at Europe’s Airports: Case for Community-Driven Third Party Risk Management

The recent ransomware attack on Collins Aerospace’s Muse software, which brought chaos to airports across Europe, serves as a stark reminder of a critical gap in how organisations approach Third Party Risk Management (TPRM).

Protect and inform with Orbit Risk

Orbit Diligence

Orbit Intelligence

Orbit Security

OrbitAI

T+1 settlement: 2025 Overview

DORA Digest Newsletter

Our Clients

Subscribe to our newsletter

Insights

5 Key Takeaways from a Deal Hacker: What PE Firms Should Look for When Doing Cyber Deal Due Diligence

Why Cybersecurity Due Diligence is Critical to Deal Completion

DORA Compliance Checklist: Practical Guidance for Q4 and 2026

Ransomware at Europe’s Airports: Case for Community-Driven Third Party Risk Management

Orbit Risk

Orbit AI

Solutions

About us

Contact us