DORA → Essential Eight crosswalk
A control-by-control mapping between Digital Operational Resilience Act (EU 2022/2554) and ACSC Essential Eight. 3 mappings.
| DORA | Essential Eight | Relationship | Notes |
|---|---|---|---|
| Art. 12 Backup policies and recovery procedures | E8-8 Regular backups | EquivalentCurated | Backup & recovery |
| Art. 9 Protection and prevention | E8-3 Multi-factor authentication | PartialCurated | Access control & identity |
| Art. 9 Protection and prevention | E8-4 Restrict administrative privileges | PartialCurated | Access control & identity |
Mappings marked “Official” derive from standards-body informative references; “Curated” mappings are authored by Cyber Compliance and provided for guidance only.