With the new EU regulation DORA (Digital Operational Resilience Act), it is even more important for regulated industries such as the financial industry, i.e. banks, insurance companies and their service providers, to operate digital systems that are not only secure but also auditable and fail-safe.
⏱ Reading time: 2 minutes
At intension, we have succeeded in qualifying as a service provider for DORA-compliant companies with Keycloak as a Service by implementing the resulting compliance requirements.
What is DORA?
DORA obliges financial companies in the EU to strengthen their digital resilience. This means ensuring that IT systems continue to function reliably even in the event of cyber attacks, technical failures or other disruptions. And not only that – all service providers involved must also meet these requirements.
For providers like us, this means we must demonstrate that our services are DORA-compliant – including emergency management, auditability, data protection and clear exit strategies.
What is Keycloak?
Keycloak is an open-source identity and access management (IAM) solution. Keycloak centrally controls who has access to which applications, including single sign-on (SSO), multi-factor authentication (MFA) and role-based access control.
For companies, this means less effort in user management, greater security and a better user experience.
Keycloak as a Service – DORA-ready with us
As a provider of Keycloak as a Service We have specifically tailored our platform to the requirements of regulated customers. In recent months, we have adapted our processes and selected suppliers to ensure DORA compliance. What does this mean in concrete terms?
- Auditability & transparency: Provides complete insight into our service processes as needed – including audit logs and audit rights.
- Emergency management & business continuity: We have established a certifiable emergency concept based on ISO 22301 – including recovery strategies and regular tests.
- Data protection & data location:Customer data remains in the EU – with AV contracts including DORA clauses, even with our certified subcontractors and corresponding TOMs.
- SLA & Verfügbarkeit: Unser Service ist auf 24/7-Betrieb ausgelegt – mit garantierter Verfügbarkeit und schnellen Reaktionszeiten bis zu 30 Minuten.
- Exit strategy & data portability: Customers retain control over their data throughout the term of the contract – even when it ends.
In short: With our Keycloak as a Service, we offer a fully DORA-compliant IAM solution.
Ready for regulatory certainty?
If you are looking for an IAM solution that not only impresses technically, but is also on the safe side in terms of regulations, then you have come to the right place. Our Keycloak as a service is ready for tomorrow’s demands. And for you.
Just get in touch – we’ll show you how to get started with Keycloak securely, flexibly and in compliance with DORA.
