Barnes Projects Logo

Barnes Projects

Why DORA, Incident Reporting will not succeed

Gaps and missed opportunities identified:

Benefits of the 10 Top Level Cyber Threat Clusters concept:

Recommendations for EU regulations: Consider incorporating a structured threat categorization framework, such as the 10 Top Level Cyber Threat Clusters concept, into the DORA incident reporting requirements. This would provide a common language for reporting, improve consistency across entities, and enhance the overall effectiveness of the incident reporting and risk management processes in the financial sector.

PROJECT REFERENCE: Cyber Threat Clusters

EXTERNAL REFERENCE:FINAL REPORT ON RTS AND ITS ON CONTENT, FORMAT, TIMELINES AND PROCEDURES FOR REPORTING OF MAJOR INCIDENTS AND SIGNIFICANT CYBER THREATS UNDER DORA

No additional updates are scheduled at this time.