Project Management for the Compliance with DORA Regulation: A Case Study of a Leading Institution in the Payment Sector

Federico Bonifazi

Project Management for the Compliance with DORA Regulation: A Case Study of a Leading Institution in the Payment Sector.

Rel. Alberto De Marco. Politecnico di Torino, Corso di laurea magistrale in Ingegneria Gestionale (Engineering And Management), 2025

Preview

PDF (Tesi_di_laurea) - Tesi
Licenza: Creative Commons Attribution Non-commercial No Derivatives.
Download (1MB) | Preview

Abstract

In recent decades, profound technological innovation has driven a significant evolution in the financial sector, fueled by increasing interconnection and regulatory advancements, making a structured approach to digital resilience essential. The Digital Operational Resilience Act (DORA) represents a milestone in the European Union’s strategy to strengthen ICT risk management and operational resilience in this context. Due to the growing reliance of financial institutions on digital infrastructures and third-party service providers, this groundbreaking regulation aims to harmonize cybersecurity and resilience standards across the EU. However, implementing DORA presents significant challenges, as organizations are required to integrate its requirements into their governance, risk management, and compliance frameworks.

The objective of this study is to frame the importance of this regulatory framework, identifying its core principles, objectives, and areas of application, while comparing it with previous similar and often overlapping regulations, such as the NIS 2 Directive and GDPR