Since January 2025, the Digital Operational Resilience Act (DORA) has set a new standard for how financial institutions must manage digital risks. It is not only about technology or regulatory checklists: it is about ensuring that every employee contributes to the resilience of the organisation.

This training aims to:

• explain why DORA is important for financial institutions and their clients;
• show how ICT risks and incidents occur and what role you play in detecting and reporting them;
• clarify how policies and procedures protect the organization and why compliance in practice is essential;
• explain how third-party services are regulated under DORA and what this means for your daily work.

CONTENT

This interactive E-learning has been developed through an international collaboration between House of Training and ABBL in Luxembourg, and Febelfin Academy in Belgium, bringing together expertise from across the financial sector.
It provides a global perspective on the Digital Operational Resilience Act (DORA) and guides you on how to manage ICT risks, report incidents, and navigate policies and third-party regulations - all while strengthening your organization’s digital resilience.

• Introduction to DORA
• ICT Risks and Security Awareness
  • Why Security Is Critical in Finance & Insurance
  • The unholy trinity of security breaches
  • Cyber Hygiene in Action
• Incident Management under DORA
  • What qualifies as an incident under DORA?
  • Major Incident Reporting under DORA
• Policies and Procedures
  • Your Everyday Security Controls
  • Policies are security measures
  • Key policies under DORA
  • Your daily tasks may change to comply with DORA
• ICT Third-Parties
  • External tools, internal risks!
  • ICT Third-Party Risk Management under DORA
  • From outsourcing to any external ICT service
  • What does ICT Services really mean under DORA ?
  • Register of third-party ICT services
  • Critical or Important Functions (CIFs)
• Conclusion and summary

PRACTICAL INFORMATION

• Duration: 1,5 hour
• Course material: interactive module
• Language: This training will be given in English
• CPD hours: This E-learning includes an online test consisting of multiple-choice questions. CPD hours will only be granted if you pass the test. You are entitled to 2 attempts to pass the test. If you do not pass (result lower than 60%), CPD hours will not be granted for this (sub)module. We therefore recommend that you take the test only when you are sure you master the subject matter.

An ‘E-learning’ is 100% self-study. You log in individually on the MyFA learning platform and process, at your own pace, learning content that is provided to you via an interactive presentation. You can follow this online training wherever, whenever and as often as you want. The teaching material consists of a digital format with text, video, images, animations, test questions and/or references to relevant documents and/or websites. 

• Accessible, clear, and directly applicable
• Learn in a group, in a motivating and targeted way
• Deepen your knowledge and obtain recognized continuing professional development hours
•  

• To receive your (CPD) participation certificate for an E-learning, you must pass an online multiple choice test. A minimum result of 60% is required. You are entitled to 2 attempts of 20 minutes each to pass the test. We therefore recommend that you take the test only when you are sure you master the subject matter.
• After passing the test, your (CPD) participation certificate will immediately be published on your MyFA account.
• Febelfin Academy wishes you a great learning experience.

The training course can be followed by various target groups:

• Financial professionals who want to strengthen their knowledge of digital resilience and ICT risk management;
• Compliance officers and risk managers responsible for implementing DORA guidelines within their organization;
• Leaders and decision-makers in financial institutions who influence digital risk behavior and DORA compliance;
• Employees in risk-sensitive roles who need to effectively identify, assess, and manage risks;
• ...