Tag
ict-risk-management
Safeguard articles tagged "ict-risk-management" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Compliance & Frameworks
DORA compliance for application risk management
DORA became fully applicable on 17 January 2025 with no grace period, and its ICT risk-management articles map almost line-for-line onto standard AppSec practice.
Jul 8, 20266 min read
SBOM & Compliance
SBOM requirements for financial services under DORA
DORA now requires EU financial entities to track every software component down to the dependency level. Here's what the SBOM requirements actually mean.
Jan 5, 20267 min read