The European Digital Operational Resilience Act, or DORA, requires financial institutions and their IT service providers to strengthen their resilience with regards to IT risk. DORA covers several areas within the IT environment, but the one we will focus on in this presentation concerns the governance of identities and access rights.

We will answer questions about how your company can know who has access to the network or information systems, to which resources they have access and who granted the access, all while controlling the legitimacy of existing access, and provide a proposed action plan to align your identities and logical access rights with DORA regulations.