Meet ComplAIIntelligence: Your AI-powered teammate for risk & complianceLearn more
All framework guides

Help Center · Framework guide

DORA

DORA · Financial · European Union · v2025

FinancialICT RiskEU

Overview

DORA (DORA) — EU Digital Operational Resilience Act for financial entities ICT risk management. ComplAI maps this framework’s controls so your team can track implementation, evidence, and audit readiness.

10 controls available in ComplAI for this framework.

Who it's for

  • Organizations that must demonstrate DORA compliance
  • Security and compliance teams operating in European Union
  • Customers and partners that require DORA assurance

Why it matters

DORA is a recognized financial framework. Activating it in ComplAI lets you manage controls, evidence, and readiness in one place.

FinancialICT RiskEU

How ComplAI helps

  • Activate DORA in the Framework Library to load its control catalog
  • Assign owners, track compliance status, and attach evidence per control
  • Use risk register and issues workflows when controls fail or deviate
  • Export readiness views for leadership and auditors

Sample controls

  • Art. 5

    ICT risk management framework

    governance
  • Art. 6

    Governance and organization

    governance
  • Art. 8

    Identification of ICT risk

    risk management
  • Art. 9

    Protection and prevention

    network security
  • Art. 10

    Detection

    audit logging
  • Art. 11

    Response and recovery

    incident response

Getting started

  1. Open Framework Library and activate DORA
  2. Review the control list and prioritize high-impact domains
  3. Attach policies, procedures, and technical evidence
  4. Mark controls audit-ready and monitor residual gaps