Article 9 of DORA makes authentication and access control a legal obligation for EU financial entities. Here is what the regulation requires, and what a breach looks like when those controls are missing. [...]
DORA and operational resilience: Credential management as a financial risk control
Summary + source link. No paywalls, no tracking.