Blend
EN/ES

DORA Financial Services

Interactive Scenario | ~15 min Buy Full Course

What you'll practise

Incident Classification

Determine if an ICT incident is "major" under Article 17 with incomplete information and operations demanding answers.

4-Hour Notification

File a regulatory notification within the Article 19 window. The CEO is unreachable. The vendor is vague. What do you submit?

Vendor Accountability

Your cloud provider failed. But Article 28 says you're responsible for third-party ICT risk. Who owns this at the board review?

Decision Under Pressure

Every choice has trade-offs. Compliance vs. speed. Completeness vs. the deadline. Your decisions are plotted on a timeline.

Built for DORA compliance training

This scenario is designed for Heads of Compliance, CROs, COOs, and operations leads at DORA-regulated financial entities. It covers Articles 17, 19, 28, and 30 with inline legal references. Play it once for awareness. Play it again to explore different paths.

Would you pass a supervisory examination?

You've seen what an ICT incident looks like under DORA. Now find out if your financial entity is ready — 7 questions, 2 minutes.

Take the DORA readiness assessment

Pricing

Annual site licence. Upload to your LMS in 30 minutes. Evidence for your next supervisory examination.

Starter

Up to 50 employees

€890/year

€17.80 per learner

  • Interactive ICT incident scenario module
  • SCORM 1.2 package
  • Completion & score tracking
  • DORA Article reference modals
  • Email support
  • Content updates included
Get Started
Most Popular

Growth

Up to 250 employees

€1,990/year

€7.96 per learner

  • Everything in Starter
  • Priority support
  • Incident response reporting template
  • Renewal at €1,290/year
Buy Growth

Scale

Up to 1,000 employees

€4,990/year

€4.99 per learner

  • Everything in Growth
  • Dedicated account manager
  • Custom completion reports
  • Renewal at €3,490/year
Buy Scale

Custom Programme

Any size organisation

From €45,000
  • Scenarios built around your ICT infrastructure
  • Your branding & regulatory context
  • Facilitated tabletop exercises
  • Bespoke role-specific modules (CISO, COO, CRO)
  • Third-party risk assessment integration
  • Ongoing measurement & iteration
Book a Call

All prices exclude VAT. 14-day refund policy.

Place Your Order

Fill in your details and we'll send you an invoice and SCORM download links within one business day.

You'll receive an invoice and SCORM download links by email within one business day. Payment by bank transfer or card.

Frequently Asked Questions

Which financial entities need DORA training?
All EU-regulated financial entities: banks, insurance companies, investment firms, payment institutions, crypto-asset service providers, and their critical ICT third-party service providers. If you're supervised by the ECB, EBA, EIOPA, or ESMA — or a national competent authority — DORA applies to you.
How is this different from generic cybersecurity awareness training?
Generic training teaches staff not to click phishing links. This puts compliance officers and operations leads in a realistic ICT incident and makes them navigate classification decisions, 4-hour notification deadlines, and vendor accountability — the exact scenarios supervisory authorities will examine.
What does DORA require for training specifically?
DORA Article 13(6) requires financial entities to develop ICT security awareness programmes and digital operational resilience training. Article 25 mandates scenario-based resilience testing. This course addresses both — it's training that IS a resilience test.
We already run tabletop exercises with a consultant. Why do we need this?
Tabletop exercises are excellent — and expensive (€3,000-10,000 per session). They happen once or twice a year. This course lets every compliance officer, operations lead, and board member practice ICT incident response on their own time, as many times as they want, with tracked results. It complements tabletop exercises, not replaces them.
Does DORA overlap with NIS2?
Yes. Many financial entities fall under both. DORA is lex specialis — it takes precedence for financial entities on ICT risk management. But NIS2's incident reporting requirements also apply. We offer both NIS2 and DORA training.
How long does the training take?
25 minutes for the interactive scenario. Designed for busy compliance and operations professionals.
What LMS platforms are supported?
Any LMS that supports SCORM 1.2 — Moodle, TalentLMS, Cornerstone, Docebo, Canvas, Blackboard, and hundreds more.
What is your refund policy?
Full refund within 14 days if the SCORM packages have not been uploaded to an LMS. Contact support@blend.training.