Centro de Documentacion de Fundación MAPFRE - Report on the feasibility for further centralisation of reporting of major ICT-related incidents : Article 21 of REGULATION (EU) 2022/2554

MAP20250000933

Report on the feasibility for further centralisation of reporting of major ICT-related incidents : Article 21 of REGULATION (EU) 2022/2554. — Frankfurt : Joint Comittee of the European Supervisory Authorities, 2024

115 p.

Sumario: The report on the feasibility of further centralizing the reporting of major ICT-related incidents under DORA explores the potential benefits, limitations, and risks of establishing a single EU Hub for incident reporting. It examines the current decentralized system, where financial entities report incidents to national competent authorities, and compares it with two centralization scenarios: a Data Sharing model and a fully Centralized Hub. The report highlights the technical, legal, and operational prerequisites for each scenario, as well as the potential cost implications. It concludes that while all three scenarios are technically feasible, the fully Centralized Hub offers the greatest benefits in terms of standardization, data quality, and operational efficiency, despite the higher initial implementation costs and the need for robust security measures to mitigate the risks associated with data concentration. The report also emphasizes the importance of further analysis and stakeholder consultation to ensure a smooth transition and effective implementation

1. Reglamento DORA . 2. Normativa . 3. Armonización europea . 4. Análisis de riesgos . 5. Unión Europea . I. Joint Committee of the European Supervisory Authorities . II. EIOPA . III. European Securities and Markets Authority . IV. European Banking Authority . V. Título.