Skip to content
Support Hub Partners Investors
Get started Contact us

Digital Operational Resilience Act (DORA)

The Digital Operational Resilience Act (DORA) is a regulatory framework set by the European Union to enhance the cybersecurity and operational resilience of financial institutions.

DORA mandates that financial entities strengthen their defence against digital threats, ensuring that they are well prepared to withstand and recover from cyber incidents.

Our DORA course covers key requirements for ICT risk management, incident reporting, resilience testing, third-party risk management, and information sharing, helping ensure regulatory compliance.

Get started Course details
  • 25 Minutes
  • All staff
  • Based on UK legislation, but suitable for global audiences upon the removal of UK-specific references and translation as necessary.

Learning objectives

  • Implement and maintain a comprehensive information and communication technologies (ICT) risk management framework and actively participate in risk assessments and mitigation strategies
  • Promptly identify, report and respond to ICT-related incidents
  • Participate in regular resilience testing to help assess and improve our defences against cyber threats
  • Conduct due diligence on ICT third-party providers, confirm they meet DORA's standards and monitor their performance
  • Follow cybersecurity best practices, report suspicious activity and comply with all protocols to protect our ICT systems

    What can you expect your employees to learn?

Introduction

What is DORA?

  • Who does it apply to?
  • The five pillars

Pillar 1: ICT risk management and governance

  • ICT risk management and governance
  • What this means for our firm
  • What this means for you
  • You decide

Pillar 2: Incident reporting

  • What this means for our firm
  • What this means for you
  • You decide

Pillar 3: Resilience testing

  • What this means for our firm
  • What this means for you
  • You decide

Pillar 4: ICT third-party risk management

  • What this means for our firm
  • What this means for you
  • You decide

Pillar 5: Information sharing

  • What this means for our firm
  • What this means for you
  • You decide

Summary

Affirmation

Assessment

Does your company have…

Under 50 employees?

We recommend our CoreCompliance, our solution, perfect for smaller teams. Start your training immediately with pre-configured, ready-to-go courses.

Learn more

Over 50 employees?

We have a range of flexible pricing plans to suit your unique needs. Choose from off-the-shelf course libraries or a customised, bespoke approach to reach your compliance learning goals.

Explore plans

Your questions, answered

CoreCompliance

DORA

Cybersecurity

Common FAQs

Where can I track incidents involving personal data?

Tools such as a Data Breach Register enable you to log, track, and respond to data breaches and similar incidents efficiently. Skillcast offers this tool, making it easy to document and manage incidents in line with compliance requirements.

How can I benchmark my team's cybersecurity awareness?

An anonymous cybersecurity awareness survey can assess your team's understanding of critical security practices. Skillcast offers ready-to-use surveys to benchmark awareness levels and identify areas needing extra focus.

How can I benchmark my team's cyber security awareness?

An anonymous cybersecurity awareness survey can assess your team’s understanding of critical security practices. Skillcast offers ready-to-use surveys to benchmark awareness levels and identify areas needing extra focus.

Which courses are included in CoreCompliance?

All users get access to courses on popular compliance topics, such as: bribery, cybersecurity, equality, health and safety. In addition, you can get courses specific to your business sector.

There are over 150 courses included within the CoreCompliance package. The actual courses provided depend on the sector chosen for the subscription.

Are CoreCompliance courses only intended for use by those based in the UK?

Most of our courses are non-jurisdiction-specific and informed by global standards. However, some of them are specifically about UK law. We currently only recommend CoreCompliance outside the UK for courses on common standards. This includes Modern Slavery, Money Laundering, and Bribery.

Do the courses bookmark my progress?

Yes, all the courses have automatic bookmarking. If you close a course without completing it, you can return to where you left off or restart the course. However, if the course features a video, your progress through the video will not be bookmarked, and you'll need to start the video afresh upon your return.

What are in-depth courses?

Your subscription includes in-depth e-learning courses on bribery, money laundering, data protection, and equality. This is ideal for annual compliance training. Each course takes 30-45 minutes and provides comprehensive foundational knowledge. They can evidence that with a certificate and CPD points.

What are microlearning courses?

The CoreCompliance includes microlearning courses on most topics that you need for employee compliance training. These are typically 2-3 minutes long and illustrate the compliance topic using engaging visuals and storylines. For each course, employees can download a certificate evidencing their completion.

Can we use a Skillcast certificate to evidence training to regulators, courts, etc?

Yes, you can present a Skillcast certificate to evidence training. Skillcast can verify its validity, i.e., when and on which account the training was done, the time spent, etc. But of course, we can't prevent one person from sitting in place of another to do the training. That's up to the client company to ensure. Also, Skillcast is not an accredited certification body. Therefore, the certificates are only proof of training completion, not a legal document.

What is "mandatory training"?

All users in your account can see all the courses available for your business sector. You can set any of these courses as "mandatory training" for one or more users. Doing this assigns the courses to them with a deadline and sends them notification emails. If they don't complete the course within the deadline, they get reminder emails to complete the assignment.

How do I check my mandatory training?

The "Mandatory Training" box on the homepage shows the percentage of completed, incomplete, and overdue mandatory training. Select the box to access your incomplete mandatory training. The date (shown in the DD/MM/YYYY format) is your deadline for completing the course.

What is in my training record?

Your training record shows a list of the courses that you've started and completed. You can select each entry to see more details, such as your passing score and your certificate. You can access your training record by selecting "Certificates" at the top of the screen.

Can I get certificates for courses I've completed?

Yes, you can download a course completion certificate after you've completed a course. To do this, select "Certificates" at the top of your screen, and then choose the relevant course from the list of those that you've completed.

How do I update my details?

Select "My Profile" at the top of the screen to change your details.

Do I get a dashboard to manage my employees?

Yes, CoreCompliance provides you with an admin dashboard where you can manage and monitor your learners. It enables you to check whether your employees have completed the mandatory training you have assigned to them. You can also download a report showing the completed, pending or overdue assignments for all your users.

How do I start a subscription?

Subscribing to the CoreCompliance is easy. You are already registered for a trial. Select "Purchase" at the top of the screen and select the number of seats you need (you will need a seat for yourself). You can pay using a credit or debit card, which will be processed by Stripe.

Can I change the number of seats in my subscription?

Yes, you can upgrade your subscription to a higher number of seats at any point during your subscription. This will be at a pro-rata charge by selecting "Billing" at the top of the page. You can also reduce the number of seats at any point, but this change will take effect from the next renewal date.

Can I get monthly or annual subscriptions?

All subscriptions are on an annual basis. We don't offer monthly subscriptions.

Can I get an invoice for the subscription?

Yes, you will receive your invoice and payment receipt by email. After the purchase, you can also log in to Stripe to download your invoice and receipt.

How long do I have to wait to assign training after making the payment?

After your payment has been processed successfully, you and your employees will have immediate access to all the e-learning. You will need to add their names and email addresses to give them access.

How do I purchase more seats?

Your admin dashboard shows the number of seats you currently have available. You can purchase more seats at any point during your subscription. To do this, select "Billing" at the top of the page, allowing you to add more users to your Portal. You can have a maximum of 50 seats in total.

Can I reuse the seats of employees who have left my company?

Yes, you can free up seats by archiving users who have left your company and assigning them to others in your company.

Can I add more than 50 users to my subscription?

CoreCompliance is only available for up to 50 users. If you require more than 50 seats, you will need to upgrade to our Standard Plan. You can contact our Sales team via our website.

Can I get a refund if I terminate my subscription partway through the year?

Unfortunately, not. CoreCompliance subscriptions are for a whole year. If you terminate your subscription partway through the year, we will not renew it, but we can't give you any refunds.

Are the courses SCORM-compliant?

Yes. This means they can be delivered via the Skillcast Portal or any other SCORM-compliant Learning Management System.

What other tools are needed beyond training?

A comprehensive compliance solution often needs more than just training. Alongside e-learning, tools like declarationssurveys, and registers that track compliance tasks are usually essential. Skillcast provides full support to help you set up these additional tools.

Can users only view the courses assigned to them?

No. All users can view all the courses in your Portal. Additionally, some of these courses may be mandatory, requiring completion by the given deadline.

Related courses

Boost your compliance efforts with our range of courses. Varying in length and topic, our courses equip you with the tools to create an ethical and resilient workplace.

Data Protection

Data protection relates to how all organisations collect, use, and store personal and sensitive data.

Read more

In-depth 45 Minutes Data Protection (GDPR) All staff

Preventing Sexual Harassment

Companies rightly have a zero-tolerance policy for sexual harassment, and violations may lead not only to disciplinary action but also to perpetrator prosecution.

Read more

In-depth 60 Minutes Preventing Harassment All staff

Anti-Bribery Training

Despite a worldwide effort to eradicate bribery, it is still prevalent in many countries and presents a real risk for businesses.

Read more

In-depth 30 Minutes Bribery Prevention All staff

Anti-Money Laundering & Counter-Terrorist Financing

To prevent criminal activity, nearly all countries in the world have committed themselves to extremely tough laws against money laundering and terrorist financing.

Read more

In-depth 30 Minutes Financial Crime All staff

Information Security

The security of client and internal information is critical for businesses.

Read more

In-depth 35 Minutes Cybersecurity DORA CyberFocus All staff

Modern Slavery

Modern slavery is a serious crime with harsh penalties.

Read more

In-depth 30 Minutes ESG All staff

Fraud Prevention

Fraud can have grave consequences for companies, employees, and customers.

Read more

In-depth 35 Minutes Fraud Prevention All staff

Cybersecurity

Most businesses conduct some or all of their operations using digital media.

Read more

Express 20 Minutes Cybersecurity DORA CyberFocus All staff

Preventing the Facilitation of Tax Evasion

Tax laws don't only apply to those who calculate or manage taxes.

Read more

In-depth 30 Minutes All staff

Financial Sanctions

Financial and economic sanctions are binding prohibitions applied by governments to prevent business transactions with certain designated persons.

Read more

In-depth 45 Minutes Financial Crime All staff

Market Abuse Regulation

The laws and regulations prohibiting market abuse apply to all employees, not only those engaged in front-office, client dealing or trading roles.

Read more

In-depth 45 Minutes All staff

Bribery Prevention

Despite a worldwide effort to eradicate bribery, it is still prevalent in many countries and presents a real risk for businesses.

Read more

In-depth 30 Minutes Bribery Prevention All staff

Phishing

It's essential for your employees to know what phishing is, how to spot the signs of an attempt and how to protect themselves and your Company.

Express 15 Minutes Cybersecurity DORA CyberFocus All staff

Healthy Working

There are risks to your physical and mental health and wellbeing wherever you work.

Read more

In-depth 45 Minutes Health & Safety All staff

Mental Health at Work

Stress, anxiety and depression are serious health hazards in the workplace.

Read more

In-depth 15 Minutes Health & Safety All staff

Information Security

The loss or theft of commercially sensitive information may damage revenues, reputation and consumer trust.

Refresher 20 Minutes Cybersecurity DORA CyberFocus All staff

Embargoes and Sanctions

Embargoes and sanctions prohibit all transactions with an entity, trading of certain commodities, or supplying critical goods.

Read more

In-depth 45 Minutes Financial Crime All staff

Electronic Communications

Emails and instant messages can quickly make headlines, damage reputations and lead to lawsuits.

Read more

In-depth 25 Minutes Cybersecurity DORA CyberFocus All staff

Safeguarding the Vulnerable

Certain individuals may be unable to care for or protect themselves due to a mental illness or disability, age or other factors.

Read more

In-depth 45 Minutes ESG All staff

Preventing Sexual Harassment for Managers

The new duty to prevent sexual harassment in the UK will be enforceable by employment tribunals, allowing for increased compensation for victims by up to 25% if an employer fails in their duty.

Read more

In-depth 40 Minutes Preventing Harassment Managers

Good Outcomes for Vulnerable Customers

Companies have a legal obligation to identify the signs of vulnerability and ensure that vulnerable individuals are treated fairly.

Read more

In-depth 30 Minutes All staff

Overview of the Consumer Duty

The FCA's Consumer Duty is a new standard which addresses the conduct of firms.

Read more

In-depth 30 Minutes All staff

Whistleblowing in Financial Services

Our Whistleblowing Training Course educates employees on reporting misconduct safely and ensures protection.

Read more

In-depth 15 Minutes All staff

Complaints Handling in Financial Services

The FCA has identified that the number of complaints submitted in the financial services sector has increased year on year in recent times in the UK.

Read more

In-depth 40 Minutes All staff

Treating Customers Fairly in Financial Services

Treating Customers Fairly (TCF) applies to firms in the financial services industry.

Read more

In-depth 40 Minutes All staff

Personal Conflicts of Interest

The FCA states that a firm must manage conflicts of interest between itself and its customers or other clients.

Read more

In-depth 25 Minutes All staff

Introduction to UK Financial Regulation

NEDs are an important part of a firm's governance and provide independence and oversight.

Read more

In-depth 45 Minutes All staff

Operational Resilience

The FCA has made operational resilience a requirement for banks, building societies, PRA-designated investment firms, enhanced scope firms and other financial institutions.

Read more

In-depth 55 Minutes DORA All staff

CASS Overview

The FCA's Client Assets Sourcebook (CASS) supports Principle 10 of the FCA's Principles for Businesses.

Read more

In-depth 35 Minutes All staff

Conflicts of Interest in Asset Management

The FCA outlines its expectations that asset management firms establish and maintain an effective framework to identify, control and review conflicts of interest.

Read more

In-depth 30 Minutes All staff

Understanding Modern Slavery

Bring "Understanding Modern Slavery" training to life using animation characters and storylines.

Microlearning 5 Minutes ESG All staff

Gifts and Hospitality

Bring "Gifts and Hospitality" compliance training to life using animation characters and storylines.

Microlearning 5 Minutes Bribery Prevention All staff

Spot a Phishing Attempt

Bring "Spot a Phishing Attempt" online training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Abuse of Position

Bring "Abuse of Position" training to life using animation characters and storylines.

Microlearning 5 Minutes Fraud Prevention All staff

Whistleblowing

Bring "Whistleblowing" online training to life using animation characters and storylines.

Microlearning 5 Minutes All staff

Money Laundering Red Flags

Bring "Money Laundering Red Flags" training to life using animation characters and storylines.

Microlearning 5 Minutes Financial Crime All staff

Business Email Compromise

Bring "Business Email Compromise" training to life using animation characters and storylines.

Read more

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Speak Up

Bring "Speak Up" compliance training to life using animation characters and storylines.

Microlearning 5 Minutes All staff

Display Screen Equipment

Bring "Display Screen Equipment" e-learning to life using animation characters and storylines.

Microlearning 5 Minutes Health & Safety All staff

Identity Fraud

Bring "Identity Fraud" compliance training to life using animation characters and storylines.

Microlearning 5 Minutes Fraud Prevention All staff

Slips and Trips

Bring "Slips and Trips" online training to life using animation characters and storylines.

Microlearning 5 Minutes Health & Safety All staff

Manual Handling

Bring "Manual Handling" e-learning to life using animation characters and storylines.

Microlearning 5 Minutes Health & Safety All staff

Complaints Handling in Insurance

The number of complaints submitted in the Insurance sector has increased year on year in recent times in the UK.

Read more

In-depth 45 Minutes All staff

Conflicts of Interest in Insurance

A conflict of interest is where competing interests interfere with the exercising of judgement in a relationship.

Read more

In-depth 35 Minutes All staff

ICOBS General Matters

The Insurance Conduct of Business Sourcebook (ICOBS) for general matters applies to all firms engaged in the insurance business.

Read more

In-depth 20 Minutes All staff

Insurance Distribution Directives

As it does with any new legislation, the EU Commission conducted a post-implementation check on how the IMD was bedding in, and this review reached the conclusion that there was a need to review and recast the Directive.

Read more

In-depth 45 Minutes All staff

Treating Customers Fairly in Insurance

Treating Customers Fairly (TCF) applies to firms in the Insurance industry.

Read more

In-depth 45 Minutes All staff

Business Continuity Management

Despite the best risk management efforts, some events will be beyond your control, and your Company needs to plan for them accordingly.

Read more

In-depth 40 Minutes DORA CyberFocus All staff

Operational Risk

Our Operational Risk Course will help your employees understand companies' common operational risks, including legal and compliance risk, third-party risk and cyber risk.

Read more

In-depth 50 Minutes DORA CyberFocus All staff

Records Management

Records management refers to employees' creation, storage, archiving, and disposal of business records.

Express 20 Minutes Cybersecurity DORA CyberFocus All staff

Deepfake Awareness

Bring "Deepfake Awareness" compliance training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Understanding Information Security

Bring "Understanding Information Security" e-learning to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Common Cyber Threats

Bring "Common Cyber Threats" online training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Understanding the GDPR

Bring "Understanding the GDPR" online learning to life using animation characters and storylines.

Microlearning 5 Minutes Data Protection (GDPR) CyberFocus All staff

Personal Data Breaches

Bring "Personal Data Breaches" online training to life using animation characters and storylines.

Microlearning 5 Minutes Data Protection (GDPR) CyberFocus All staff

Zero Trust Cybersecurity

Bring "Zero Trust Cybersecurity" online training to life using animation characters and storylines.

Read more

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Bring Your Own Device Security

Bring "Bring Your Own Device Security" training to life using animation characters and storylines.

Microlearning 5 Minutes DORA Cybersecurity CyberFocus All staff

Device Hygiene

Bring "Device Hygiene" training to life using animation characters and storylines.

Microlearning 5 Minutes DORA Cybersecurity CyberFocus All staff

Malware

Bring "Malware" training to life using animation characters and storylines.

Microlearning 5 Minutes DORA Cybersecurity CyberFocus All staff

Ransomware

Bring "Ransomware" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Smishing

Bring "Smishing" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Spear Phishing

Bring "Spear Phishing" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Video Conferencing

Bring "Video Conferencing" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Vishing

Bring "Vishing" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Creating Strong Passwords

Bring "Creating Strong Passwords" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Multi-factor Authentication

Bring "Multi-factor Authentication" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Reacting to Password Breaches

Bring "Reacting to Password Breaches" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Information Classification

Bring "Information Classification" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Information Security on the Move

Bring "Information Security on the Move" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Tailgating and Piggybacking

Bring "Tailgating and Piggybacking" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Secure Web Browsing

Bring "Secure Web Browsing" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Supply Chain Cybersecurity

Bring "Supply chain cybersecurity" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Transferring Information Securely

Bring "Transferring Information Securely" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Using Wi-Fi safely

Bring "Using Wi-Fi safely" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Advising customers on cybersecurity

Bring "Advising customers on cybersecurity" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

CEO fraud

Bring "CEO fraud" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Guide to Secure Remote Working

Bring "Guide to Secure Remote Working" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Think Before You Click

Bring "Think before you click" training to life using animation characters and storylines.

Microlearning 5 Minutes Cybersecurity DORA CyberFocus All staff

Device security

Read more

Express 15 Minutes DORA Cybersecurity All staff

Risks in the Use of AI

Bring "Risks in the Use of AI" training to life using animation characters and storylines.

Microlearning 5 Minutes CyberFocus All staff
Browse the complete Cybersecurity training package