Digital Operational Resilience Act (DORA)

With DORA set to come into force on January 17, 2025, understanding its implications and requirements is more crucial than ever. Attending the PECB Certified DORA Lead Manager training course provides a unique chance to engage with industry experts and peers, fostering valuable discussions and insights into best practices for digital operational resilience. Through interactive sessions and practical exercises, you'll gain real-world perspectives on implementing effective strategies to mitigate ICT risks and enhance digital operational resilience in financial institutions.

Furthermore, participating in this course demonstrates your commitment to professional development and positions you as a capable leader in the evolving field of digital operational resilience. Upon successfully completing the training course and exam, you can apply for the “PECB Certified DORA Lead Manager” credential.

1. Understand the regulatory landscape and compliance requirements outlined in DORA, focusing on key pillars such as ICT risk management, ICT-related incident management and reporting, digital operational resilience testing, and ICT third-party risk management
2. Implement effective strategies and measures to enhance digital operational resilience and mitigate ICT risks within financial institutions, aligning with DORA requirements and industry best practices
3. Identify, analyze, evaluate, and treat ICT risks relevant to the financial entities 
4. Develop and maintain robust ICT risk management frameworks, incident response plans, business continuity and disaster recovery plans
5. Foster collaboration and communication with key stakeholders to ensure successful implementation and ongoing compliance with DORA
6. Utilize industry-standard tools and methodologies for monitoring, assessing, and managing ICT risks and vulnerabilities, enhancing the overall security posture of financial institutions

• Financial institutions executives and decision-makers
• Compliance officers and risk managers
• IT professionals
• Legal and regulatory affairs personnel
• Consultants and advisors specializing in financial regulation and cybersecurity

• The training course incorporates interactive elements, such as essay-type exercises and multiple-choice quizzes, some of which are scenario-based. 
• Participants are strongly encouraged to communicate and engage in discussions.
• The quizzes are designed in a manner that closely resembles the format of the certification exam.

Day 1: Introduction to the concepts and requirements of DORA

Day 2: ICT-related risk and incident management

Day 3: ICT third-party risk management and information sharing

Day 4: Review and continual improvement

Day 5: Certification exam

After successfully passing the exam, you can apply for one of the credentials shown below. You will receive the certificate once you comply with all the requirements related to the selected credential.

The requirements for certifications are as follows:

The ICT risk management activities should follow best practices and include the following:

• Drafting a DORA implementation business case
• Managing a DORA implementation project
• Implementing an ICT risk management framework
• Managing documented information
• Implementing corrective actions
• Monitoring and improving the performance of the ICT risk management framework

• Certification and examination fees are included in the price of the training course
• Participants will receive the training course material containing over 450 pages of explanatory information, examples, best practices, exercises, and quizzes. 
• An attestation of course completion worth 31 CPD (Continuing Professional Development) credits will be issued to the participants who have attended the training course.
• If candidates fail the exam, they can retake it within 12 months following the initial attempt for free.