Vulcan Cyber acknowledges the importance of the EU Regulation - Digital Operational Resilience Act (DORA) and its implications for the financial sector. While our platform is primarily focused on vulnerability management and does not directly impact the day-to-day operations or uptime of the organizations using it, we recognize the need to assess our obligations under DORA.
Current Status and Review Process:
DORA Applicability Review: Vulcan Cyber is currently conducting an internal review to determine the extent of our obligations under DORA, given that our platform is not considered a critical service that would directly disrupt financial operations if unavailable.
Alignment with Client Expectations: Even though we may not be classified as a critical vendor under DORA, we are committed to aligning our practices with the regulatory expectations of our clients in the financial sector. This includes ensuring robust operational resilience and risk management measures are in place.
Timescales:
2024 Q2: Completion of the internal review of our DORA status, including consultations with legal advisors and key stakeholders.
2024 Q3: Implementation of any necessary measures based on the review, ensuring that our operations align with the expectations of DORA, especially in areas that could indirectly affect our clients' compliance.
2024 Q4: Final validation of our compliance posture, with any required adjustments made to our operational and risk management frameworks.
Vulcan Cyber is committed to maintaining a strong security and resilience posture, ensuring that we meet both regulatory requirements and the needs of our clients, even as we continue to assess our specific obligations under DORA.
Read more on DORA regulation here.