DORA is active, and EU regulators now audit operational reality rather than compliance roadmaps. For financial entities using Google Workspace, traditional perimeter security is no longer enough. This checklist breaks down core DORA requirements into practical actions to secure common cloud and browser blind spots.