A practical guide for financial institutions preparing for threat-led penetration testing (TLPT) under the DORA regulation. It describes the full test cycle - from threat intelligence analysis, through scope planning with the regulator, to red team test execution and results reporting. Includes an organizational preparation timeline and TLPT provider selection criteria.
What you will find inside
- DORA requirements for TLPT - what the regulation says
- The role of threat intelligence in test planning
- Organization preparation timeline (12 months before the test)
- TLPT and red team provider selection criteria
- Test flow - from scoping to reporting
- Collaboration with the regulator at every stage
Download for free
How to prepare your organization for DORA-compliant TLPT testing. Requirements, timeline, and provider selection.