Fireblocks, an enterprise platform for managing digital asset operations and building businesses on blockchain, has launched its Cyber and Operational Resilience (COR) Compliance Package. This suite is designed to help financial institutions meet their obligations under the new Digital Operational Resilience Act (DORA), which came into force in the EU on Jan. 17.
Designed for institutions that designate Fireblocks as a Third-Party ICT Provider supporting a critical or important function, the package streamlines the path to regulatory alignment. Key features include a dedicated legal addendum, annual and periodic reports, an advanced ICT security kit, and an annual pooled security audit.
“Fireblocks provides its customers with a holistic offering designed to meet their DORA obligations confidently and efficiently,” said Fireblocks’ chief information security officer Oded Blatman. “We’ve built this package to simplify compliance, reduce complexity, and allow our customers to focus on scaling their businesses and innovating in a rapidly changing environment.”
Fireblocks said it implemented operational changes, a dedicated reporting framework, and designed a contractual framework to align with DORA requirements. A key feature of the offering is an Annual Security Pooled Audit, a multi-day event where clients can tackle key compliance challenges, gain insights, and streamline their audit processes.
Key features of the COR Compliance Package
- Legal addendum: Pre-drafted regulatory addendum to the Fireblocks Master Service Agreement (MSA) that aligns with DORA’s article 30 requirements.
- Comprehensive reports: Periodic and annual reports on ICT security, performance, and support management, in line with regulatory requirements.
- Audits and penetration testing: Support for audits and penetration testing, either through pooled or individual engagements.
- Annual Security Pooled Audit Event: A pooled audit event with Fireblocks’ security department, featuring live walk-throughs, exclusive operational insights and a unique opportunity to engage with Fireblocks security personnel.
“DORA isn’t just about compliance—it’s about setting a higher standard for ICT Security and operational resilience,” added Blatman. “With this package, we’re empowering financial institutions to not only meet these standards but also thrive in a more secure and transparent financial ecosystem.”