{"id":1084200,"date":"2025-03-07T14:02:51","date_gmt":"2025-03-07T13:02:51","guid":{"rendered":"https:\/\/www.fma.gv.at\/?p=1084200"},"modified":"2025-03-11T09:02:36","modified_gmt":"2025-03-11T08:02:36","slug":"lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora","status":"publish","type":"post","link":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/","title":{"rendered":"Let’s talk about Supervision No. 5: The FMA’s observations about ICT risk management under DORA"},"content":{"rendered":"

The fifth edition of the Austrian Financial Market Authority (FMA) series Let’s talk about supervision<\/em> (Reden wir über Aufsicht) addresses the issue of “ICT risk management under DORA. Experiences from supervisory practice”. Under DORA, ICT risk management plays a key role for controlling ICT security measures. If there are shortcomings in the process, or if risk management is not afforded due consideration when purchasing security solutions or when introducing security measures, there is a risk of inefficiencies and misinvestments. This is a risk that is addressed during on-site inspections by the FMA, as the latest edition of Reden wir über Aufsicht<\/em> explains.<\/p>

\n\n\nReden wir \u00fcber Aufsicht - IKT-Risikomanagement unter DORA (Format: <\/span>pdf, Size: <\/span>212,8 KB, Language: <\/span>German)<\/a>\n\n\n\n<\/p>

Further information about ICT risk management under DORA can be found here<\/a>.<\/p>

A new information series for supervised entities<\/h2>

Let’s talk about supervision<\/em> – is the FMA’s new regular information series for supervised entities. This format is intended for covering new areas of supervision as well as thematic areas where a need for explanation has been detected in the market. Relevant thematically-specific information is intended to be communicated in a quick and easy to understand manner, to create greater clarity as well as contributing towards ensuring that supervisory standards are observed. All editions published to date may be found here<\/a> (in German only).<\/p>\n","protected":false},"excerpt":{"rendered":"

Experiences from supervisory practice about ICT risk management<\/p>\n","protected":false},"author":20,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[82],"tags":[],"class_list":["post-1084200","post","type-post","status-publish","format-standard","hentry","category-news-publication"],"yoast_head":"\nLet's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Let's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich\" \/>\n<meta property=\"og:description\" content=\"Experiences from supervisory practice about ICT risk management\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/\" \/>\n<meta property=\"og:site_name\" content=\"FMA \u00d6sterreich\" \/>\n<meta property=\"article:published_time\" content=\"2025-03-07T13:02:51+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-03-11T08:02:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.fma.gv.at\/wp-content\/uploads\/2017\/05\/FMA_FB_Logo.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"925\" \/>\n\t<meta property=\"og:image:height\" content=\"524\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Michael Bailey\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@FMA_AT\" \/>\n<meta name=\"twitter:site\" content=\"@FMA_AT\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Michael Bailey\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/\"},\"author\":{\"name\":\"Michael Bailey\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#\\\/schema\\\/person\\\/0fc93858fe7814eedc8002775131ee91\"},\"headline\":\"Let’s talk about Supervision No. 5: The FMA’s observations about ICT risk management under DORA\",\"datePublished\":\"2025-03-07T13:02:51+00:00\",\"dateModified\":\"2025-03-11T08:02:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/\"},\"wordCount\":227,\"publisher\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#organization\"},\"articleSection\":[\"Publication\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/\",\"url\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/\",\"name\":\"Let's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#website\"},\"datePublished\":\"2025-03-07T13:02:51+00:00\",\"dateModified\":\"2025-03-11T08:02:36+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Let’s talk about Supervision No. 5: The FMA’s observations about ICT risk management under DORA\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#website\",\"url\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/\",\"name\":\"FMA \u00d6sterreich\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#organization\",\"name\":\"FMA - Finanzmarktaufsicht\",\"url\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.fma.gv.at\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/FMA_Logo_Twitter_400x400.png\",\"contentUrl\":\"https:\\\/\\\/www.fma.gv.at\\\/wp-content\\\/uploads\\\/2017\\\/05\\\/FMA_Logo_Twitter_400x400.png\",\"width\":400,\"height\":400,\"caption\":\"FMA - Finanzmarktaufsicht\"},\"image\":{\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/FMA_AT\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.fma.gv.at\\\/en\\\/#\\\/schema\\\/person\\\/0fc93858fe7814eedc8002775131ee91\",\"name\":\"Michael Bailey\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g\",\"caption\":\"Michael Bailey\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Let's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/","og_locale":"en_US","og_type":"article","og_title":"Let's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich","og_description":"Experiences from supervisory practice about ICT risk management","og_url":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/","og_site_name":"FMA \u00d6sterreich","article_published_time":"2025-03-07T13:02:51+00:00","article_modified_time":"2025-03-11T08:02:36+00:00","og_image":[{"width":925,"height":524,"url":"https:\/\/www.fma.gv.at\/wp-content\/uploads\/2017\/05\/FMA_FB_Logo.jpg","type":"image\/jpeg"}],"author":"Michael Bailey","twitter_card":"summary_large_image","twitter_creator":"@FMA_AT","twitter_site":"@FMA_AT","twitter_misc":{"Written by":"Michael Bailey","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/#article","isPartOf":{"@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/"},"author":{"name":"Michael Bailey","@id":"https:\/\/www.fma.gv.at\/en\/#\/schema\/person\/0fc93858fe7814eedc8002775131ee91"},"headline":"Let’s talk about Supervision No. 5: The FMA’s observations about ICT risk management under DORA","datePublished":"2025-03-07T13:02:51+00:00","dateModified":"2025-03-11T08:02:36+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/"},"wordCount":227,"publisher":{"@id":"https:\/\/www.fma.gv.at\/en\/#organization"},"articleSection":["Publication"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/","url":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/","name":"Let's talk about Supervision No. 5: The FMA's observations about ICT risk management under DORA - FMA \u00d6sterreich","isPartOf":{"@id":"https:\/\/www.fma.gv.at\/en\/#website"},"datePublished":"2025-03-07T13:02:51+00:00","dateModified":"2025-03-11T08:02:36+00:00","breadcrumb":{"@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fma.gv.at\/en\/lets-talk-about-supervision-no-5-the-fmas-observations-about-ict-risk-management-under-dora\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fma.gv.at\/en\/"},{"@type":"ListItem","position":2,"name":"Let’s talk about Supervision No. 5: The FMA’s observations about ICT risk management under DORA"}]},{"@type":"WebSite","@id":"https:\/\/www.fma.gv.at\/en\/#website","url":"https:\/\/www.fma.gv.at\/en\/","name":"FMA \u00d6sterreich","description":"","publisher":{"@id":"https:\/\/www.fma.gv.at\/en\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fma.gv.at\/en\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.fma.gv.at\/en\/#organization","name":"FMA - Finanzmarktaufsicht","url":"https:\/\/www.fma.gv.at\/en\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fma.gv.at\/en\/#\/schema\/logo\/image\/","url":"https:\/\/www.fma.gv.at\/wp-content\/uploads\/2017\/05\/FMA_Logo_Twitter_400x400.png","contentUrl":"https:\/\/www.fma.gv.at\/wp-content\/uploads\/2017\/05\/FMA_Logo_Twitter_400x400.png","width":400,"height":400,"caption":"FMA - Finanzmarktaufsicht"},"image":{"@id":"https:\/\/www.fma.gv.at\/en\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/FMA_AT"]},{"@type":"Person","@id":"https:\/\/www.fma.gv.at\/en\/#\/schema\/person\/0fc93858fe7814eedc8002775131ee91","name":"Michael Bailey","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/510bf0bd81dc175e23b8d5ed7454991f8ab421373a4f993fd19b193163f33225?s=96&d=mm&r=g","caption":"Michael Bailey"}}]}},"toolset-meta":[],"publishpress_future_action":{"enabled":false,"date":"2026-06-30 16:58:18","action":"delete","newStatus":"draft","terms":[],"taxonomy":"category","extraData":[]},"publishpress_future_workflow_manual_trigger":{"enabledWorkflows":[]},"_links":{"self":[{"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/posts\/1084200","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/users\/20"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/comments?post=1084200"}],"version-history":[{"count":2,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/posts\/1084200\/revisions"}],"predecessor-version":[{"id":1084356,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/posts\/1084200\/revisions\/1084356"}],"wp:attachment":[{"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/media?parent=1084200"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/categories?post=1084200"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fma.gv.at\/en\/wp-json\/wp\/v2\/tags?post=1084200"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}