Application of DORA standards in operational risk management in GIS systems

• Autorzy: Stanik Jerzy

Identyfikatory

DOI

10.57599/gisoj.2025.5.1.203

• Języki publikacji: EN

Abstrakty

EN

The aim of the article is to investigate the application of the Digital Operational Resilience Act (DORA) standards in operational risk management in GIS (Geographic Information Systems). The study focuses on identifying the benefits and challenges of integrating these standards and assessing their impact on the operational resilience of financial institutions. A literature review shows the growing importance of DORA standards in digital risk management and the benefits of implementing them in GIS systems. Examples of DORA implementations in sectors such as banking and ICT services show that the integration of these standards can improve operational risk management and resilience to digital threats. The results of the research point to numerous benefits, such as increased resilience to cyber threats and better risk management. Recommendations include investments in technology, employee training, and cooperation with ICT service providers.

Słowa kluczowe

EN

DORA; GIS; operational risk; ICT services; risk management

PL

DORA; GIS; ryzyko operacyjne; usługi ICT; zarządzanie ryzykiem

• Wydawca: SILGIS Association ; Croatian-Polish Scientific Network
• Czasopismo: GIS Odyssey Journal
• Rocznik: 2025
• Tom: Vol. 5, no. 1
• Strony: 203--212
• Opis fizyczny: Bibliogr. 21 poz.

Twórcy

autor

Stanik Jerzy

• Military University of Technology, Faculty of Cybernetics, Warsaw, Poland

• https://orcid.org/0000-0002-0162-2579

Bibliografia

• 1. Casarosa F., Gennari F. (2023). Data Sharing in the Internet of Medical Things: Between the Data Act and the EHDS. European Journal of Risk Regulation, First View, pp. 1-23. DOI: https://doi.org/10.1017/err.2025.18.
• 2. Caseware Staff. (2024). 5 Operational Risk Management Best Practices. https://www.caseware.com/resources/blog/5-operational-risk-management-best- practices/ [access: 11.01.2025].
• 3. Chapelle A. (2019). Operational Risk Management: Best Practices in the Financial Services Industry. https://www.wiley.com/en-us/Operational+Risk+Management%3A+Best+Practices+in+the+Financial+Services+Industry-p-9781119549079 [access: 11.01.2025].
• 4. Curti F., Gerlach J., Kazinnik S., Lee M., Mihov A. (2023). Cyber risk definition and classification for financial risk management. DOI: 10.21314/JOP.2022.036.
• 5. DORA (2024). DORA and its impact for Financial Institutions. https://www.grcworldforums.com/dora-and-its-impact-for-financial-institutions/8776.article [access: 17.01.2025].
• 6. DORA (2025). Digital Operational Resilience Act. The official text of the regulation is available on the European Union website. https://www.eiopa.europa.eu/digital-operational-resilience-act-dora_en [access: 17.01.2025].
• 7. ESAs (2024). ESAs publish first set of rules under DORA for ICT and third-party risk management and incident classification. https://www.eba.europa.eu/publications-and-media/press-releases/esas-publish-first-set-rules-under-dora-ict-and-third-party [access: 17.01.2025].
• 8. Girling P.X. (2013). Operational Risk Management: A Complete Guide to a Successful Operational Risk Framework. John Wiley & Sons. https://onlinelibrary.wiley.com/doi/pdf/10.1002/9781118755754.fmatter [access: 17.01.2025].
• 9. Ibrahim M. (2025). Positioning DORA Compliance as a Strategic Advantage for Digital Trust and Operational Excellence. https://www.isaca.org/resources/news-and-trends/isaca-now-blog/2025/positioning-dora-compliance-as-a-strategic-advantage-for-digital-trust-and-operational-excellence [access: 27.01.2025].
• 10. Jones D. (2025). Understanding DORA: Digital Operational Resilience Act Now in Effect for Financial Entities and ICT Service Providers. https://www.jonesday.com/en/insights/2025/01/digital-operational-resilience-act-now-in-effect-for-financial-sector [access: 17.01.2025].
• 11. Kiedrowicz M., Stanik J. (2021). Risk in GIS systems. DOI: https://doi.org/10.57599/gisoj.2022.2.1.39.
• 12. Kosutic D. (2025). What are DORA Commission Delegated Regulations (CDRs)? https://advisera.com/articles/dora-cdr-commission-delegated-regulations/ [accessed: 27.01.2025].
• 13. Longley P.A., Goodchild M.F., Maguire D.J., Rhind D.W. (2015). Geographic Information Systems and Science. https://www.wiley.com/en-us/Geographic+Information+Science+and+Systems-p-9781118676950 [access: 27.01.2025].
• 14. MetricStream (2025). The Definitive Guide to DORA (Digital Operational Resilience Act) https://www.metricstream.com/learn/dora-digital-operational-resilience-act-guide.html [access: 27.01.2025].
• 15. Nyimbili P.H., Erden T., Karaman H. (2018). Integration of GIS, AHP, and TOPSIS for earthquake hazard analysis. Natural Hazards, 92, 1523-1546. https://doi.org/10.1007/s11069-018-3262-7.
• 16. Paté-Cornell M.E., Kuypers M., Smith M., Keller P. (2018). Cyber risk management for critical infrastructure: A risk analysis model and three case studies. Risk Analysis, 38 (2), 226-241. https://doi.org/10.1111/risa.12844.
• 17. Partz H. (2025). EU’s new DORA rules come into effect: What does it mean for crypto? https://cointelegraph.com/news/eu-dora-rules-impact-crypto [access: 27.01.2025].
• 18. PwC (2022). Operational resilience DORA with the Risk Management. https://www.pwc.ch/en/publications/2022/ch-dora-2.pdf [access: 09.02.2025].
• 19. Rothrock R.A. (2018). Digital Resilience: Is Your Company Ready for the Next Cyber Threat? HarperCollins. https://www.amazon.com/Digital-Resilience-Company-Ready-Threat/dp/0814439241/ref=monarch_sidesheet_title [access: 09.02.2025].
• 20. Safai D. (2025). DORA Compliance: Checklist for 2025. https://trilio.io/resources/dora-compliance/ [access: 09.02.2025].
• 21. Straub S. (2025). DORA Regulation: Requirements, Penalties & Compliance, https://n2ws.com/blog/dora-regulation [access: 04.03.2025].

Uwagi

Opracowanie rekordu ze środków MNiSW, umowa nr POPUL/SP/0154/2024/02 w ramach programu "Społeczna odpowiedzialność nauki II" - moduł: Popularyzacja nauki (2025).