Benutzerbeiträge von „Jhospes“

3. Juni 2025

• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +364 N Translations:Cyber Solidarity Act/13/en Die Seite wurde neu angelegt: „Obligations for data provision by entities or regulations of the relationship with the provisions of the GDPR are not recognizable. The decision of several institutions to share data on cyber threats is voluntary and trust-based. If Member States wish to benefit from the system, they must make the institutions concerned in this context as attractive as possible.“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +648 N Translations:Cyber Solidarity Act/12/en Die Seite wurde neu angelegt: „Detection of cyber threats and incidents by the networked SOCs Analysis of collected data using AI and data analytics Issuance of cross-border warnings for identified threats Enabling faster and more efficient response to major cyber incidents by authorities and relevant entities Obligations for data provision by entities or regulations of the relationship with the provisions of the GDPR are not recognizable. The decision of several institutions to sha…“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +58 N Translations:Cyber Solidarity Act/11/en Die Seite wurde neu angelegt: „The European Cyber Shield operates as follows (Art 3 CSA):“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +23 N Translations:Cyber Solidarity Act/10/en Die Seite wurde neu angelegt: „==== Functionality ====“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +267 N Translations:Cyber Solidarity Act/9/en Die Seite wurde neu angelegt: „The European Cyber Shield consists of a pan-European infrastructure of National Security Operations Centers (National SOCs) and Cross-border Security Operations Centers (Cross-border SOCs). The SOCs are interconnected and form an EU-wide cybersecurity infrastructure.“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +29 N Translations:Cyber Solidarity Act/8/en Die Seite wurde neu angelegt: „=== European Cyber Shield ===“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +18 N Translations:Cyber Solidarity Act/7/en Die Seite wurde neu angelegt: „== Core Content ==“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +536 N Translations:Cyber Solidarity Act/6/en Die Seite wurde neu angelegt: „A general reference to Art 3 NIS II-RL is not present, which means that the size-independent scope of application of the NIS2 II-RL is not covered in the basic concept. However, with regard to the use of support from the EU Cybersecurity Reserve, entities are mentioned again in Art. 14 Para 2 CSA. This systematically creates the legally questionable impression that the entities of Art. 3 NIS-II-RL are only covered by the CSA within this narrow framework a…“ aktuell
• 13:1713:17, 3. Jun. 2025 Unterschied Versionen +236 N Translations:Cyber Solidarity Act/5/en Die Seite wurde neu angelegt: „The Cyber Solidarity Act refers to Art. 6 Para 38 NIS II Directive (Art. 2 Para 4. CSA) as well as activities of entities in Annex I or II of the NIS2-RL, which are designated as critical or highly critical sectors. (Art. 2 Para 5. CSA)“ aktuell
• 13:1613:16, 3. Jun. 2025 Unterschied Versionen +26 N Translations:Cyber Solidarity Act/4/en Die Seite wurde neu angelegt: „== Scope of Application ==“ aktuell
• 13:1613:16, 3. Jun. 2025 Unterschied Versionen +582 N Translations:Cyber Solidarity Act/3/en Die Seite wurde neu angelegt: „Regulation (EU) 2025/38 (Cyber Solidarity Act)<ref>https://eur-lex.europa.eu/eli/reg/2025/38/oj</ref> is an EU initiative to detect, prepare for, and respond to significant and large-scale cybersecurity threats and attacks. The Act includes a European Cybersecurity Warning System, consisting of interconnected Security Operations Centers across the EU, and a comprehensive Cybersecurity Emergency Mechanism to improve the EU's cyber resilience.<ref>European…“ aktuell
• 13:1613:16, 3. Jun. 2025 Unterschied Versionen +18 N Translations:Cyber Solidarity Act/2/en Die Seite wurde neu angelegt: „== Introduction ==“ aktuell
• 13:1613:16, 3. Jun. 2025 Unterschied Versionen +122 N Translations:Cyber Solidarity Act/1/en Die Seite wurde neu angelegt: „Para 3 and {{Art.|322|TFEU|dejure|}} Para 1 lit a|Reference=OJ L 2025/38, 1|Applicable=February 4, 2025|Valid=applicable}}“ aktuell
• 13:1613:16, 3. Jun. 2025 Unterschied Versionen +20 N Translations:Cyber Solidarity Act/Page display title/en Die Seite wurde neu angelegt: „Cyber Solidarity Act“ aktuell
• 13:1513:15, 3. Jun. 2025 Unterschied Versionen +303 Cyber Solidarity Act Diese Seite wurde zum Übersetzen freigegeben aktuell
• 13:1313:13, 3. Jun. 2025 Unterschied Versionen +20.202 N Digital Operational Resilienec Act (DORA)/en Die Seite wurde neu angelegt: „Practical Tip: Medium-sized enterprises should prepare model contracts to clearly regulate requirements for third-party providers. Many SMEs lack centralized contract frameworks, complicating implementation.“
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +13 N Translations:Digital Operational Resilienec Act (DORA)/69/en Die Seite wurde neu angelegt: „== Sources ==“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +23 N Translations:Digital Operational Resilienec Act (DORA)/67/en Die Seite wurde neu angelegt: „== Further Reading ==“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +153 N Translations:Digital Operational Resilienec Act (DORA)/66/en Die Seite wurde neu angelegt: „ Potential criminal prosecution of executives in cases of gross negligence (Art. 11) National provisions may include prison sentences (Art. 52)“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +31 N Translations:Digital Operational Resilienec Act (DORA)/65/en Die Seite wurde neu angelegt: „=== Criminal Consequences ===“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +95 N Translations:Digital Operational Resilienec Act (DORA)/64/en Die Seite wurde neu angelegt: „ Revocation or suspension of license (Art. 50) Mandatory corrective measures (Art. 50)“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +33 N Translations:Digital Operational Resilienec Act (DORA)/63/en Die Seite wurde neu angelegt: „=== Administrative Measures ===“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +230 N Translations:Digital Operational Resilienec Act (DORA)/62/en Die Seite wurde neu angelegt: „ Financial institutions: Nationally determined, in Austria up to EUR 500,000 or up to 1% of global annual turnover (DORA Implementation Act – DORA-VG) Critical ICT third-party providers: Up to 1% of global annual turnover“ aktuell
• 13:0913:09, 3. Jun. 2025 Unterschied Versionen +119 N Translations:Digital Operational Resilienec Act (DORA)/61/en Die Seite wurde neu angelegt: „DORA imposes strict fines and penalties for violations to ensure digital operational stability in the financial sector:“ aktuell
• 13:0813:08, 3. Jun. 2025 Unterschied Versionen +14 N Translations:Digital Operational Resilienec Act (DORA)/60/en Die Seite wurde neu angelegt: „=== Fines ===“ aktuell
• 13:0813:08, 3. Jun. 2025 Unterschied Versionen +59 N Translations:Digital Operational Resilienec Act (DORA)/58/en Die Seite wurde neu angelegt: „• RTS on subcontracting to ICT third parties (Art. 30(5))“
• 13:0813:08, 3. Jun. 2025 Unterschied Versionen +652 N Translations:Digital Operational Resilienec Act (DORA)/57/en Die Seite wurde neu angelegt: „ RTS on ICT risk management (Art. 15, Art. 16(3)) • RTS on classification of ICT-related incidents (Art. 18(3)) • RTS on contractual arrangements with ICT third-party providers (Art. 28(10)) • ITS on the information register (Art. 29(9)) • RTS on reporting of major ICT-related incidents and significant cyber threats (Art. 20a) • ITS on reporting of major ICT-related incidents and significant cyber threats (Art. 20b) • RTS on threat…“
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +171 N Translations:Digital Operational Resilienec Act (DORA)/55/en Die Seite wurde neu angelegt: „• Penetration Testing: The RTS on Threat-Led Penetration Testing (TLPT) under DORA provides detailed specifications also relevant for critical infrastructure under NIS2.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +161 N Translations:Digital Operational Resilienec Act (DORA)/54/en Die Seite wurde neu angelegt: „• Third-Party Management: DORA’s RTS on the use of ICT services and subcontracting can be used as best practices for supply chain risk management under NIS2.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +127 N Translations:Digital Operational Resilienec Act (DORA)/53/en Die Seite wurde neu angelegt: „• Incident Reporting: The ITS on reporting major incidents provide standardized templates adaptable to NIS2-covered entities.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +114 N Translations:Digital Operational Resilienec Act (DORA)/52/en Die Seite wurde neu angelegt: „• Risk Management: DORA’s RTS on ICT risk management can serve as templates for similar frameworks under NIS2.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +165 N Translations:Digital Operational Resilienec Act (DORA)/51/en Die Seite wurde neu angelegt: „The Regulatory Technical Standards (RTS) and Implementing Technical Standards (ITS) developed under DORA offer valuable guidance for implementing the NIS2 Directive:“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +27 N Translations:Digital Operational Resilienec Act (DORA)/50/en Die Seite wurde neu angelegt: „===== NIS2 Directive =====“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +867 N Translations:Digital Operational Resilienec Act (DORA)/49/en Die Seite wurde neu angelegt: „• Data protection and information security are closely interlinked concepts that must be considered together. Any measure, such as monitoring and logging, must also be examined in terms of data protection requirements. Article 88 GDPR emphasizes the protection of human dignity in the workplace, which is especially relevant when using invasive technologies such as AI-based anomaly monitoring. The use of AI systems to detect and report anomalies is increa…“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +28 N Translations:Digital Operational Resilienec Act (DORA)/48/en Die Seite wurde neu angelegt: „===== Data Protection =====“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +16 N Translations:Digital Operational Resilienec Act (DORA)/47/en Die Seite wurde neu angelegt: „== Synergies ==“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +220 N Translations:Digital Operational Resilienec Act (DORA)/46/en Die Seite wurde neu angelegt: „• In companies with centralized IT governance, such as holding structures, governance design and integration must be clearly defined and enforced. This applies to both operational units and the organization as a whole.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +228 N Translations:Digital Operational Resilienec Act (DORA)/45/en Die Seite wurde neu angelegt: „• Scope: A bank purchases its core banking system from an external provider and only manages the contract. The bank must still ensure compliance with DORA requirements, particularly concerning risk and supply chain management.“ aktuell
• 13:0713:07, 3. Jun. 2025 Unterschied Versionen +20 N Translations:Digital Operational Resilienec Act (DORA)/44/en Die Seite wurde neu angelegt: „== Case Examples ==“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +632 N Translations:Digital Operational Resilienec Act (DORA)/43/en Die Seite wurde neu angelegt: „DORA allows financial entities to share information and insights on cyber threats with each other — within trusted communities and while maintaining confidentiality of potentially sensitive information. This promotes awareness and strengthens the ability to prevent and mitigate the impact of ICT incidents. This information sharing is voluntary under DORA. Participation or withdrawal from such an arrangement must be reported to the FMA.<ref>FMA, DORA –…“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +28 N Translations:Digital Operational Resilienec Act (DORA)/42/en Die Seite wurde neu angelegt: „=== Information Sharing ===“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +151 N Translations:Digital Operational Resilienec Act (DORA)/41/en Die Seite wurde neu angelegt: „Practical Tip: If central audits of large ICT providers are conducted, companies can rely on those results and minimize their own decentralized audits.“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +529 N Translations:Digital Operational Resilienec Act (DORA)/40/en Die Seite wurde neu angelegt: „The supervision of ICT third-party providers is carried out by the ESAs, which under Article 31(2) DORA may designate them as “critical.” A lead supervisory authority will be appointed for each critical ICT third-party provider, with far-reaching powers, including information requests, inspections, and recommendations regarding security requirements and subcontracting. Central audits of ICT providers may also be conducted. It remains to be clarified w…“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +22 N Translations:Digital Operational Resilienec Act (DORA)/39/en Die Seite wurde neu angelegt: „==== Supervision ====“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +291 N Translations:Digital Operational Resilienec Act (DORA)/38/en Die Seite wurde neu angelegt: „Furthermore, Article 30 DORA sets out specific contractual provisions for subcontracting by ICT third-party providers, also defined in ESA technical standards. These rules govern, among other things, the permissibility and criteria of subcontracting. ICT providers are fully subject to DORA.“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +207 N Translations:Digital Operational Resilienec Act (DORA)/37/en Die Seite wurde neu angelegt: „Practical Tip: Medium-sized enterprises should prepare model contracts to clearly regulate requirements for third-party providers. Many SMEs lack centralized contract frameworks, complicating implementation.“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +464 N Translations:Digital Operational Resilienec Act (DORA)/36/en Die Seite wurde neu angelegt: „Before concluding a contract with an ICT third-party provider, financial entities must conduct a risk assessment taking into account the criteria in Article 28(4) and (5) DORA. During contract negotiations, they must ensure the definition of audit frequencies and the audit scope to maintain control over critical systems. Additionally, contractual termination rights and appropriate exit strategies must be defined, especially for critical or important funct…“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +20 N Translations:Digital Operational Resilienec Act (DORA)/35/en Die Seite wurde neu angelegt: „==== Contracts ====“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +721 N Translations:Digital Operational Resilienec Act (DORA)/34/en Die Seite wurde neu angelegt: „A key requirement is that financial entities must maintain an up-to-date information register containing details of all outsourced ICT processes. This register includes the respective contractual arrangements and classification of processes as critical or non-critical. These details must be made available to competent authorities upon request. Furthermore, financial entities must annually report the number of new agreements with ICT third-party providers,…“ aktuell
• 13:0613:06, 3. Jun. 2025 Unterschied Versionen +31 N Translations:Digital Operational Resilienec Act (DORA)/33/en Die Seite wurde neu angelegt: „==== Information Register ====“ aktuell