EU-DORA-18-02
Requirement
18 — Classification of ICT-related incidents and cyber threats
Classify cyber threats as significant based on specified criteria
Description
Financial entities must classify cyber threats as significant based on the criticality of services at risk (including transactions and operations), the number and/or relevance of targeted clients or...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
EU-DORA-18-01
Requirement
Classify ICT-related incidents based on specified criteria
EU-DORA-18-03
Requirement
Develop draft regulatory technical standards for incident classification criteria
EU-DORA-18-04
Requirement
Develop draft regulatory technical standards for competent authority assessment criteria
EU-DORA-18-05
Requirement
Develop draft regulatory technical standards for cyber threat classification criteria
EU-DORA-18-06
Requirement
Consider specific criteria when developing regulatory technical standards
EU-DORA-18-07
Requirement
Submit draft regulatory technical standards by specified deadline
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started