DORA compliance software

With cybreg software, you can easily implement ICT risk management and meet the requirements of DORA.

DORA implementation

The cybreg software includes a wizard that guides you through the entire process to ensure the implementation of DORA requirements. Dedicated legal and regulatory experts will help you create customised internal regulations and processes, including links to information assets, ICT assets, specific activities and other functionality.With cybreg, you get key data and a comprehensive framework for ensuring DORA compliance.

Management of information and ICT assets

The cybreg software includes a catalogue of all information assets and ICT assets. It allows to store and display information about such assets and the persons responsible for the management of each asset. With cybreg software, you get the ability to identify all processes linked to information and ICT assets, as well as monitor the physical or digital security of these assets.

ICT risk management

Cybreg software ensures the management and maintenance of a risk catalogue in compliance with DORA, including risk mapping and the calculation of overall risk levels based on their likelihood and impact. The software also includes a diagram providing a comprehensive and clear visualization of risks. Furthermore, it enables seamless integration with other elements, such as your business activities, information assets, and ICT assets, and supports the requirements of the NIS2 directive and cybersecurity.

Managing risks associated with third parties

The cybreg ICT risk management software enables the management and control of risks associated with third-party ICT service providers. In particular, it is the regulatory management of contracts concluded with third-party ICT service providers and ensuring the content of such contracts in accordance with DORA. The software also provides the possibility to automate the process of monitoring and auditing the activities of a third party ICT service provider as required by DORA for such monitoring or auditing. Cybreg also offers Cyber Security Manager (CSM) services in the form of outsourcing.

Questionnaires for selecting third-party ICT service providers

The cybreg software will generate questionnaires for you to send to third-party ICT service provider candidates. The questionnaires contain all the necessary information that you will consider when selecting third party ICT service providers and will ensure that all the questions are covered so that the candidate can be selected in accordance with the DORA requirements.

Register of information

The cybreg software comprehensively and clearly manages the record of information about third-party ICT service providers and the services they supply to you in the information register. The information register follows the format and scope prescribed for such a register under DORA. The cybreg software manages the information register so that it can be conveniently submitted to the CNB with all the necessary information at any time upon request.

Incident Management

The cybreg software ensures the management and generation of the necessary documentation for incident management in case of incidents according to DORA requirements.Incident management management includes detailed linkages with information assets, ICT assets, processes, risks and other elements. The individual steps can be automated. When an incident occurs, the software will ensure that the relevant reports are generated for submission to the CNB.

DORA reporting to the CNB

The cybreg software enables easy generation of all reports submitted to the CNB in the DORA mode, with the prescribed content, so that they can be submitted in the format required by the CNB.

Periodic reports

Flexibility, automation and integration

We can customize the cybreg software according to your needs. The basis of the range of functionalities is the wide possibility of automating individual processes and the associated cost savings for DORA compliance. Of course, it is possible to integrate with other tools used within your organization such as Jira, Asana, MS Teams, Slack, Service Now and others.

Frequently Asked Questions

Everything you need to know about DORA control in the Cybreg environment.

What is DORA?

DORA (Digital Operational Resilience Act) is a European regulation aimed at digital resilience in the financial sector. It sets out requirements for ICT risk management, incident management, digital resilience testing and third party risk management. It applies from 17 January 2025.

Who is covered by DORA?

DORA applies to financial entities – banks, insurance companies, investment firms, payment institutions, crypto-asset providers and key ICT service providers operating in the EU financial sector.

How to create a DORA information register?

The cybreg software includes a catalogue of all information assets, ICT assets and support assets. It allows you to store information about assets and responsible persons, identify established processes and monitor physical and digital security – all in accordance with DORA requirements.

How to report cyber incidents to the CNB under DORA?

The cybreg software enables the generation of mandatory reports in accordance with CNB requirements. It includes documentation and classification of incidents, management of cyber events and automation of the reporting process with links to relevant assets and processes.

How to manage third party risks under DORA?

Cybreg enables the management of contracts with third-party ICT providers, including their content according to DORA, automation of audits and questionnaires for the selection of providers. It provides regulatory oversight of contractual relationships.