ContentsICT security awareness programmesPurpose and Integration into the ICT Risk Management FrameworkScope and ApplicabilityRequired Content of ICT Security Awareness ProgrammesBasic Security Awareness (All staff)Advanced Security Awareness (Staff with privileged or high-risk functions)Security Awareness for Senior ManagementSecurity Awareness for ICT Third-Party Service ProvidersDelivery, Frequency, and Updating of the ProgrammeFrequencyDelivery FormatsContinuous Evolution (Article 13 DORA)Documentation, Evidence, and Audit RequirementsGovernance and ResponsibilitiesArticle 13 (6) DORAArticle 5 (2)(g) DORA ICT security awareness programmes Purpose and Integration into the ICT Risk Management Framework ICT security awareness programmes under Article 13(6) DORA are a mandatory, organisation-wide capability designed to ensure that all staff—including senior management—possess a level of ICT security competence … Continue reading ICT security awareness programmesRead More →