Cybersecurity risk management and reporting obligations for digital infrastructures, providers and ICT service managers

Topic area:
Status: 22.10.2024 |
Current
Key words:
IT security / cyber risk, Supplement
Initiative
Official name
Commission Implementing Regulation (EU) 2024/2690 of 17 October 2024 laying down rules for the application of Directive (EU) 2022/2555 as regards technical and methodological requirements of cybersecurity risk-management measures and further specification of the cases in which an incident is considered to be significant with regard to DNS service providers, TLD name registries, cloud computing service providers, data centre service providers, content delivery network providers, managed service providers, managed security service providers, providers of online market places, of online search engines and of social networking services platforms, and trust service providers
Type
Implementing regulation
Level 2
Initiator
EU
Submitted
27.06.2024
Doc. code
2024/2690
Summary
Status
Status

Get a subscription to have access to the whole content.

Current version
Final version
17.10.2024
Next step
Entry into force and application
Entry into force

Get a subscription to have access to the whole content.

Application date

Get a subscription to have access to the whole content.

Scope
Relevant for

Get a subscription to have access to the whole content.

Associated initiatives
Level 1
Cybersecurity – NIS 2 Directive (binding, Main version, EU)
Level 2
Level 3 / Other

Source: EU, 2024/2690, 2024