Search

4 results

Document

19 May 2026

Consolidated version of EBA ameding Guidelines on ICT and security risk management

Document

11 February 2025

Final report on amending Guidelines on ICT risk and security management

EBA final report amending ICT and security risk management guidelines to align with DORA, clarifying scope for payment service providers not covered by DORA while harmonizing ICT risk frameworks under PSD2 and CRD.

Download document View press release

Document

17 July 2024

Joint Guidelines on the estimation of aggregated costs/losses caused by major ICT-related incidents

EBA, EIOPA, and ESMA joint guidelines under DORA for financial entities on estimating and reporting aggregated annual costs and losses from major ICT-related incidents, ensuring harmonization, proportionality, and reduced reporting burden.

Download document View press release

Document

17 July 2024

Joint Guidelines on oversight cooperation

EBA, EIOPA, and ESMA finalize joint guidelines under DORA to establish cooperation and information exchange procedures between European Supervisory Authorities and competent authorities for consistent oversight of critical ICT third-party service providers, effective January 2025.

Download document View press release

Organisation and governance

Legal and policy framework

Careers

Supervisory convergence

Direct supervision and oversight

Information for consumers

Ad hoc activities

Risk analysis

Pillar 3 data hub

Reporting

Data

Publications

Media centre

Search

Consolidated version of EBA ameding Guidelines on ICT and security risk management

Final report on amending Guidelines on ICT risk and security management

Joint Guidelines on the estimation of aggregated costs/losses caused by major ICT-related incidents

Joint Guidelines on oversight cooperation