MFSA: Reporting of Major ICT-Related Incidents

Following a public consultation held on 12 July 2022, the MFSA is releasing important documentation in relation to the reporting of major ICR-related incidents, including:
  1. A Major ICT-Related Incident Reporting Process (‘the Process Document’);
  2. Templates for Initial, Intermediate and Final Major ICT-Related Incident Reporting (‘the Templates’, ‘the provided Templates’);
  3. User Guidelines for submitting Major ICT-Related Incident Reports to the Authority (‘the User Guidelines’).

All eligible entities are expected to report any major ICT-related incidents to the MFSA in line with the Process Document, using the provided Templates, and by following the User Guidelines. Incidents can be of an operational or security nature. 

This reporting comes as a preamble to DORA (Digital Operational Resilience Act), and will eventually be aligned.

Contact us for further assistance on this reporting. 


MFSA: Reporting of Major ICT-Related Incidents