EU-DORA-17-06 Requirement 17 — ICT-related incident management process

Assign roles and responsibilities for different incident types

Description

The incident management process must assign roles and responsibilities that need to be activated for different ICT-related incident types and scenarios.

Full Analysis & Evidence Requirements

Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.

Related Obligations

EU-DORA-17-01 Requirement

Define, establish and implement ICT-related incident management process

EU-DORA-17-02 Documentation

Record all ICT-related incidents and significant cyber threats

EU-DORA-17-03 Requirement

Establish procedures for consistent monitoring, handling and follow-up

EU-DORA-17-04 Requirement

Put in place early warning indicators

EU-DORA-17-05 Requirement

Establish incident identification and classification procedures

EU-DORA-17-07 Requirement

Set out communication plans for incidents

EU-DORA-17-08 Reporting

Report major incidents to senior management

EU-DORA-17-09 Requirement

Establish incident response procedures

Map this obligation to your AI systems

ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.

Get Started

Assign roles and responsibilities for different incident types

Description

Full Analysis & Evidence Requirements

Related Obligations

Map this obligation to your AI systems

Start your compliance assessment