Workshop overview

Strengthening operational resilience matters, but it is not a 'one and done' set of requirements.

This half-day workshop explores the regulatory regimes for operational resilience in both the UK and EU, so that firms can understand their existing and ongoing obligations to strengthen operational resilience. It focuses on understanding the two regimes, their similarities and differences, and practical means for holistic compliance in a cross-border context.

Firms subject to the UK operational resilience regime should already be familiar with the core rules that took effect from 31 March 2025.

For firms operating in the EU, understanding the similarities and differences with DORA is important to ensure integrated and streamlined compliance, including in areas such as testing, incidents, and third-party risk management. For managing incidents in particular, the incident reporting requirements continue to evolve in the UK. 

Firms must understand both frameworks as they seek to build incident management regimes in the EU under DORA.

Learning outcomes:

  • examine the UK and EU regimes to understand key similarities and differences
  • understand incident reporting requirements and proposals in the EU and UK, to help inform incident management compliance frameworks
  • learn about the different requirements for testing, including scenario testing and penetration testing
  • understand the different types of policies that firms need to have in place
  • find a solution for contractual requirements and discuss challenges for negotiations
  • discuss key compliance challenges, including governance aspects
  • explore the regimes for oversight of critical third parties and the potential relevance for firms.

Interested in taking any of our workshops in-house?

Whether you are seeking to upskill your team, enhance productivity or foster a culture of continuous learning, we can deliver customised training programmes designed to meet your specific needs. If you have an enquiry, you can complete the in-house form and our training team will be in touch with next steps.

Area of expertise:
Payments, innovation & resilience
Clare Reynolds

Clare Reynolds

Partner, Taylor Wessing

Clare Reynolds is a Partner at technology-focused law firm Taylor Wessing in London, advising on FinTech and financial services matters. She spec...

Clare Reynolds is a Partner at technology-focused law firm Taylor Wessing in London, advising on FinTech and financial services matters. 

She specialises in advising on the use of technology within the financial services sector, including outsourcing as well as operational and ICT resilience. This includes advising on regulatory requirements alongside commercial and contractual arrangements for the implementation of technologies such as SaaS and cloud computing. Her clients comprise regulated firms and technology companies across the UK and EU. 

She has spent time on secondment at a leading payments firm and global technology business, so understands the need for practical advice.

Read more

This workshop is perfect for: 

  • Compliance and Risk Officers at firms operating in both the UK and the EU
  • Operational Resilience Managers and Business Continuity leads
  • IT and Cybersecurity Executives managing incident response and testing
  • Third-Party Risk Managers focused on vendor oversight across jurisdictions
  • Senior Managers accountable for regulatory compliance under SM&CR or similar regimes

Operational Resilience

Event details

Venue
Online event
Date and time
09 Jul 2025
09:30 - 12:30
Closed