2026 DORA Audits: What Regulators Will Expect with Ralf Menegatti

Show Notes

DORA is no longer theoretical. The EU’s Digital Operational Resilience Act (Regulation (EU) 2022/2554) is in force.

Financial institutions and the organizations that support them must now demonstrate measurable digital operational resilience. Regulators will expect clear evidence of ICT risk management, incident response readiness, third-party oversight, and governance accountability.

More importantly — what will regulators expect to see when they examine your identity and access governance controls?

Identity is at the center of DORA compliance:

• Access governance and least privilege
• Control over privileged accounts
• Third-party and vendor access oversight
• Evidence of monitoring, review, and remediation

To help you prepare for 2026 supervisory reviews, YouAttest welcomes leading EU regulatory expert Ralf Mennegatti, CEO of Luxembourg-based DAQS, for a focused discussion on what regulators will expect — and how to prepare now.

We’ll cover:

• The current state of DORA enforcement
• What supervisors are reviewing in 2026
• How DORA impacts identity governance programs
• Practical steps to align your identity systems with regulatory expectations

This will be a live session with actionable guidance and real-world insight.

Bring your questions — Fragen gerne auf Deutsch!

To learn more about how YouAttest helps organizations strengthen identity governance and audit readiness, contact us at info@youattest.com.