Beta

Source: OJ L 333, 27.12.2022, p. 1–79

EN

Recital 58 Designation of a public authority for TLPT

To draw on the expertise already acquired by certain competent authoritiesas defined in Article 46, in particular with regard to implementing the TIBER-EU framework, this Regulation should allow Member States to designate a single public authority means any government or other public administration entity, including national central banks. as responsible in the financial sector, at national level, for all TLPT(threat-led penetration testing) a framework that mimics the tactics, techniques and procedures of real-life threat actors perceived as posing a genuine cyber threat, that delivers a controlled, bespoke, intelligence-led (red team) test of the financial entity’s critical live production systems matters, or competent authoritiesas defined in Article 46, to delegate, in the absence of such designation, the exercise of TLPT(threat-led penetration testing) a framework that mimics the tactics, techniques and procedures of real-life threat actors perceived as posing a genuine cyber threat, that delivers a controlled, bespoke, intelligence-led (red team) test of the financial entity’s critical live production systems related tasks to another national financial competent authorityas defined in Article 46.

Table of contents

We're continuously improving our platform to serve you better.

Your feedback matters! Let us know how we can improve.

Contact us:

dora@springflod.se

Found a bug?

Springflod is a Swedish boutique consultancy firm specialising in cyber security within the financial services sector.

We offer professional services concerning information security governance, risk and compliance.

Crafted with ❤️ by Springflod