IA Webinar: From Regulation to Reinvention: DORA, FCA Day 2, and the Future of Operational Resilience
As of 31st March 2025, the transition period for PS21/3 has officially ended, and with it, the era of grace for firms to align with the UK’s operational resilience rules. At the same time, DORA has moved from anticipation to enforcement, setting a new bar across the EU for ICT risk, third-party resilience, and incident reporting. But while the compliance deadlines have passed, the real work of embedding resilience has only just begun.
In this session, we unpack what comes next. We will explore how leading firms are shifting from regulatory checklists to continuous operational readiness by drawing on post-deadline supervisory insights from the FCA and PRA and early DORA enforcement observations from across Europe. We'll cover how key areas such as impact tolerance, third-party mapping, scenario testing, and board governance are evolving in light of CrowdStrike-level disruptions and increasing scrutiny.
This session goes beyond compliance to examine strategic resilience and how financial services firms can rearchitect their programs for a volatile, hyperconnected, AI-driven future. Whether you're still refining your operational resilience framework or scaling DORA across business services and vendor ecosystems, you’ll gain a clear view of what strong looks like going forward.
