DORA is a pan-European legislative framework focused on operational resilience and cyber resilience, setting uniform requirements for financial entities to achieve a high level of digital operational resilience. It covers ICT risk management, incident reporting, resilience testing, and managing ICT third-party risk.

The AWS Shared Responsibility Model outlines the division of responsibility between AWS and its customers. AWS is responsible for the security "of" the cloud, including infrastructure and services, while customers are responsible for security "in" the cloud, including data and application security.

AWS services that support DORA compliance include AWS Security Hub, AWS Config, AWS Shield, Amazon CloudWatch, AWS CloudTrail, AWS Key Management Service (KMS), Amazon Inspector, AWS Artifact, and AWS Audit Manager.

AWS Artifact provides access to compliance reports and certifications, such as ISO 27001, ISO 27017, and ISO 27018, which can help financial entities demonstrate compliance with DORA requirements.

These ISO certifications demonstrate AWS's commitment to security best practices and controls, relevant for cloud computing and personal data protection. They support financial entities in meeting DORA's requirements for ICT risk management and security.

The AWS Well-Architected Framework helps cloud architects build secure, high-performing, resilient, and efficient infrastructure, aligning with DORA's requirements for operational excellence, security, reliability, performance efficiency, cost optimization, and sustainability.