Menu
I help regulated firms translate DORA from regulatory text into a practical, risk-based ICT resilience programme aligned with Central Bank expectations.
DORA Certified • MSc Cybersecurity
All financial entities must comply
Banks, payment firms, insurers & more
Testing, incidents & third-parties
Five interconnected pillars that form the foundation of digital operational resilience
Map critical business services, assets and dependencies, implement controls, and maintain an up-to-date ICT risk management framework.
Define incident categories, playbooks and timelines so you can detect, classify and report major incidents to the competent authority.
From vulnerability assessments to threat-led testing for significant firms, DORA expects structured, risk-based testing plans.
Contracts, concentration risk and oversight of critical ICT providers—especially cloud and managed services.
Boards remain accountable for ICT risk, and DORA encourages sector-wide information-sharing arrangements on threats.
Most small and mid-size firms don't need a 200-page framework—they need clear, actionable steps that satisfy supervisors without consuming months of internal time.
I work with 10–300 person firms under Central Bank of Ireland supervision to build proportionate DORA programmes that blend regulatory requirements with operational reality.
Every engagement starts with understanding your actual ICT landscape—what systems matter, where the dependencies are, and what risks genuinely threaten your operations.
Automated risk assessment and compliance gap analysis with intelligent recommendations tailored to your organisation’s risk profile.
24/7 monitoring of your digital infrastructure with real-time alerts, dashboards and compliance status tracking.
Auto-generate regulatory documentation, evidence packs and audit trails with compliance-ready templates and workflows.
Integrated incident management with automated severity assessment, response tracking and regulatory reporting capabilities.
Built on machine learning to learn your environment and provide increasingly accurate compliance insights for DORA programmes.
Building practical tools to streamline DORA compliance workflows
In development: a lightweight tool to help financial firms track ICT risk registers, incident classifications, third-party assessments, and testing schedules—all mapped to DORA articles and Central Bank expectations.
We're seeking small and mid-size financial entities (10–300 people) to validate tool workflows, provide feedback on usability, and shape features that actually solve real compliance pain points.
SME validation partners receive early tool access at preferential rates, direct input into the roadmap, and priority support during DORA implementation phases.
If you're a regulated financial firm looking to streamline DORA compliance and willing to provide feedback during tool validation, let's connect.
I hold a DORA micro-credential issued by Munster Technological University (MTU), covering scope, mandatory requirements and practical implementation approaches, alongside an MSc in Cybersecurity and hands-on ICT risk work for Irish organisations.
My approach blends compliance, cyber and operational resilience—treating DORA as a business resilience challenge, not a pure paper exercise.
Digital Operational Resilience (DORA) Micro‑Credential
Issued by Munster Technological University as part of the Cyber Skills initiative.
30-minute call to understand your services, regulators, and ICT estate.
Gap-assessment and practical risk-based roadmap.
Support to embed controls, testing and reporting with documentation your auditors can use.
Common questions from Irish financial firms