BETA

12 Amendments of Christophe HANSEN related to 2020/0266(COD)

Amendment 281 #
Proposal for a regulation
Article 3 – paragraph 1 – point 6
(6) ‘ICT-related incident’ means an unforeseen identified occurrence in the network and information systems, whether resulting from malicious activity or not, which compromises the security of network and information systems, of the information that such systems process, store or transmevent or a series of linked events, unplanned by the financial entity, which has or will have an adverse impact on the integrity, or has adverse effects on the availability, confidentiality, continuity and/or authenticity of financial services provided by the financial entity;
2021/06/01
Committee: ECON
Amendment 361 #
Proposal for a regulation
Article 5 – paragraph 9 – point d
(d) explaining the ICT reference architecture and any changes needed to reach specific business objectives;
2021/06/01
Committee: ECON
Amendment 386 #
Proposal for a regulation
Article 7 – paragraph 5
5. Financial entities shall identify and document all critical processes that are dependent on ICT third-party service providers, and shall identify interconnections with ICT third-party service providers that support critical or important functions.
2021/06/01
Committee: ECON
Amendment 406 #
Proposal for a regulation
Article 8 – paragraph 4 – subparagraph 1
For the purposes of point (b), financial entities shall design the network connection infrastructure in a way that allows it to be instantaneously severed and shall ensure its compartmentalisation and segmentation, in order to minimise and prevent contagion, especially for interconnected financial processes.
2021/06/01
Committee: ECON
Amendment 424 #
Proposal for a regulation
Article 10 – paragraph 5 – point a
(a) test the ICT Business Continuity Policy and the ICT Disaster Recovery Plan at least every three yearlys and after, if substantive changes to the ICT systems occurred, in the year thereafter;
2021/06/01
Committee: ECON
Amendment 436 #
Proposal for a regulation
Article 11 – paragraph 2
2. Backup systems shall begin processing without undue delay, unless such start would jeopardize the security of the network and information systems or the integrity or confidentiality of dataFinancial entities shall establish backup systems that operate in accordance with the backup policies.
2021/06/01
Committee: ECON
Amendment 443 #
Proposal for a regulation
Article 11 – paragraph 5 – subparagraph 1 – point a
(a) located at a geographical distance from the primary processing site, designed or equipped to ensure that it bears a distinct risk profile and to prevent it from being affected by the event which has affected the primary site;
2021/06/01
Committee: ECON
Amendment 623 #
Proposal for a regulation
Article 27 – paragraph 2 – point b
(b) the locations where the contracted or sub-contracted functions and services are to be provided and where data is to be processed, including the storage location, and the requirement for the ICT third- party service provider to notify the financial entity if it envisages changing such locations;deleted
2021/06/01
Committee: ECON
Amendment 656 #
Proposal for a regulation
Article 28 – paragraph 2 – point e
(e) the number of Member States in which the relevant ICT third-party service provider provides services;deleted
2021/06/01
Committee: ECON
Amendment 657 #
Proposal for a regulation
Article 28 – paragraph 2 – point f
(f) the number of Member States in which financial entities using the relevant ICT third-party service provider are operating.deleted
2021/06/01
Committee: ECON
Amendment 683 #
Proposal for a regulation
Article 29 – paragraph 4
4. The Oversight Forum shall be composed of the Chairpersons of the ESAs, and at least one high-level representative from the current staff of the relevant competent authority from each Member State. The Executive Directors of each ESA and one representative from the European Commission, from the ESRB, from ECB and from ENISA shall participate in the Oversight Forum as observers.
2021/06/01
Committee: ECON
Amendment 687 #
Proposal for a regulation
Article 29 – paragraph 5
5. In accordance with Article 16 of Regulation (EU) No 1093/2010, (EU) No 1094/2010 and (EU) No 1095/2010, the ESAs shall issue guidelines on the cooperation between the ESAs and the national competent authorities for the purposes of this Section on the detailed procedures and conditions relating to the execution of tasks between national competent authorities and the ESAs and details on exchanges of information needed by national competent authorities to ensure the follow-up of recommendations addressed by Lead Overseers pursuant to point (d) of Article 31(1) to critical ICT third-party providers.
2021/06/01
Committee: ECON