DORA comes into force in January 2025

The DORA Dialogues

Supported by
Microsoft logo (2012) (1)

Welcome to DORA Dialogues, the video podcast series where we explore the critical aspects of IT risk management, governance, and resilience. Hosted by David Kelleher and Ivan Galea, we delve into topics directly impacting the Digital Operational Resilience Act (DORA). This Act emphasises the necessity for robust IT risk management frameworks within financial institutions to enhance their ability to withstand and recover from IT-related disruptions.

Microsoft-based Solutions

Disaster Recovery

With Azure Site Recovery, seamlessly recover co-located environments to the cloud or secure your Azure infrastructure from disruptions. Gain peace of mind with resilient, scalable disaster recovery solutions tailored to your needs.

Compliance Management

Simplify regulatory adherence and data governance with Microsoft's Purview Suite. Streamline compliance workflows and enforce industry-specific standards, ensuring your organisation meets critical governance needs efficiently and consistently.


Secure Remote Access / Zero Trust Network Access

Protect remote users and enable secure connections with the Microsoft Entra Suite. Zero Trust Network Access ensures your organisation stays secure, controlling access to resources without compromising user experience or productivity.


Data Governance and Protection with M365

Manage and safeguard your Microsoft 365 tenant with advanced policies for data classification, retention, and destruction. Azure Information Protection and Data Loss Prevention ensure compliance while keeping sensitive data secure at all times.

Threat Detection

Proactively defend your infrastructure with Azure Sentinel and Microsoft Defender. Our Extended Detection and Response (XDR) solution offers continuous monitoring, empowering you to stay ahead of advanced threats and bolster your security posture.

Endpoint Secure Configuration

Leverage Microsoft's Endpoint Manager to secure and configure devices efficiently. Ensure each endpoint complies with your organisation’s security standards, reducing vulnerabilities while optimising management processes across your entire network.

#01 | Resilience Testing

In this episode of DORA Dialogues, hosts David Kelleher and Ivan Galea are joined by Christian Bajada, Head of Information Security at BMIT, to delve into the critical topic of resilience testing within IT frameworks. 

As the Digital Operational Resilience Act (DORA) underscores the importance of robust IT risk management in financial institutions, this discussion provides a comprehensive overview of what resilience testing entails, its importance, and how organisations can effectively implement and benefit from these practices. Learn how resilience testing not only identifies vulnerabilities but also strengthens business continuity and overall IT governance.

#02 | IT Risk

Welcome to the latest episode of DORA Dialogues. Join hosts David Kelleher and Ivan Galea, along with BMIT's Chief Digital and Compliance Officer, Dione Vella, as they explore the evolving landscape of IT risks. Discover the primary sources of IT risk, best practices for mitigation, and how the Digital Operational Resilience Act (DORA) is shaping IT governance and resilience. This episode offers valuable insights for IT professionals and business leaders alike, helping you stay ahead in the ever-changing world of IT risk management.

#03 | Culture & Training

In this episode of DORA Dialogues, hosts David Kelleher and Ivan Galea are joined by BMIT's Senior GRC Specialist, Cyrille Aubergier, to discuss the importance of cultivating a security-first culture within organizations. They explore how knowledge, training, and awareness can turn employees into the first line of defense against cyber threats. Learn why fostering a security mindset across all levels of an organization is crucial for effective IT governance, risk management, and compliance with the Digital Operational Resilience Act (DORA).

#04 | IT Governance

In this episode of DORA Dialogues, hosts David Kelleher and Ivan Galea are joined by Dione Vella, BMIT's Chief Digital and Compliance Officer, to explore the essential components of effective IT governance. They discuss the importance of management buy-in, fostering a security-first culture, and continuous training. Learn how aligning IT governance with corporate governance can enhance business resilience and ensure compliance with the Digital Operational Resilience Act (DORA). Discover practical strategies for implementing IT governance frameworks and measuring their effectiveness within your organization.

#05 | Cybersecurity Framework

In this episode of DORA Dialogues, David Kelleher, Ivan Galea, and Christian Bajada discuss the essential components of a strong cybersecurity framework and the challenges of implementing and maintaining compliance. They explore the importance of managing risk, the role of management support, and the integration of cybersecurity frameworks within organizations. This insightful conversation highlights how businesses can effectively safeguard their IT environments and ensure resilience in the face of evolving threats.

#06 | IT Management

In this episode of DORA Dialogues, David Kelleher, Ivan Galea, and Sean Cohen, BMIT's Chief Customer Delivery & Support Services Officer, delve into the critical topic of IT management. They explore the evolving role of IT in today’s digital age, discussing its integration within business continuity and compliance with the Digital Operational Resilience Act (DORA). The conversation highlights the challenges faced by small organizations in achieving effective IT management and the importance of partnering with IT service providers to navigate the complexities of evolving threat landscapes and regulatory requirements.

#07 | Communication and Incident Management

In this episode of DORA Dialogues, David Kelleher, Ivan Galea, and Cyrille Aubergier, BMIT's Senior GRC (Governance, Risk, and Compliance) Expert, discuss the critical importance of communication and incident management within the framework of the Digital Operational Resilience Act (DORA). They explore how effective communication strategies and a clear incident management plan are essential for compliance, maintaining stakeholder trust, and ensuring business continuity. The conversation highlights best practices for handling IT incidents and the crucial role of management in incident response.

How is your DORA roadmap looking?

If you are unsure where you stand with DORA or have doubts about your existing policies and technologies, talk to us today.

The clock is running down. You do not want to be scrambling to tick boxes in January 2025.