The ESAs, through the Joint Committee, and in consultation with ENISA and the ECB, shall develop: (a) common draft regulatory technical standards in order to:(i)establish the content of the reports for major ICT-related incidents in order to reflect the criteria laid down in Article 18(1) and incorporate further elements, such as details for establishing the relevance of the reporting for other Member States and whether it constitutes a major operational or security payment-related incident or not;(ii)determine the time limits for the initial notification and for each report referred to in Article 19(4);(iii)establish the content of the notification for significant cyber threats.When developing those draft regulatory technical standards, … Continue reading Article 20 DORA – Harmonisation of reporting content and templatesRead More →