At SteelEye, they claim to understand the critical importance of maintaining operational resilience and ensuring the security of their systems and services.
SteelEye says they are are committed to safeguarding “both their operations and client data from potential risks and disruptions.”
In alignment with the Digital Operational Resilience Act (DORA), Regtech firm SteelEye explains that they have proactively assessed and validated their frameworks and controls “to ensure their clients have the solid foundation they need to comply with DORA.”
DORA, which is set to take full effect in January 2025, aims “to strengthen the operational resilience of financial institutions across the EU by ensuring they can withstand and recover from all types of disruptions, including cyberattacks and technical failures.”
Regtech company SteelEye further noted that it “imposes stringent requirements on information security, risk management, and third-party oversight, placing operational resilience at the forefront of regulatory compliance.”
SteelEye also mentioned in a blog post that they “have thoroughly reviewed our security framework, which is grounded in ISO 27001 and SOC 2 certifications, to ensure it fully supports our clients’ compliance with DORA.”
These certifications underscore their commitment “to security, risk management, and continuous improvement—key pillars of operational resilience.”
Their ISO 27001 certification ensures that they “maintain a comprehensive Information Security Management System (ISMS), addressing key areas such as risk management, access control, and incident management.”
In addition, SteelEye’s SOC 2 compliance reportedly demonstrates that they “have rigorous controls in place to ensure data integrity, availability, confidentiality, and privacy.”
By adhering to these high standards, SteelEye says that it ensures that their operations and services remain resilient and reliable, helping customers “to meet the stringent requirements of DORA.”
Regtech firm SteelEye concluded that they are now “committed to ongoing compliance and continuous improvement to protect their customers’ interests and maintain the highest security and operational resilience standards.”