Art. 22 Union level coordinated security risk assessments of critical supply chains | NIS 2 directive |

1. The Cooperation Group means a group as defined in Article 2, point (11), of Directive 2013/34/EU;, in cooperation with the Commission and ENISA, may carry out coordinated security risk means the potential for loss or disruption caused by an incident and is to be expressed as a combination of the magnitude of such loss or disruption and the likelihood of occurrence of the incident; assessments of specific critical ICT services means digital and data services provided through ICT systems to one or more internal or external users on an ongoing basis, including hardware as a service and hardware services which includes the provision of technical support via software or firmware updates by the hardware provider, excluding traditional analogue telephone services;, ICT systems or ICT products means an ICT product as defined in Article 2, point (12), of Regulation (EU) 2019/881; supply chains, taking into account technical and, where relevant, non-technical risk means the potential for loss or disruption caused by an incident and is to be expressed as a combination of the magnitude of such loss or disruption and the likelihood of occurrence of the incident; factors.
1. The Commission, after consulting the Cooperation Group means a group as defined in Article 2, point (11), of Directive 2013/34/EU; and ENISA, and, where necessary, relevant stakeholders, shall identify the specific critical ICT services means digital and data services provided through ICT systems to one or more internal or external users on an ongoing basis, including hardware as a service and hardware services which includes the provision of technical support via software or firmware updates by the hardware provider, excluding traditional analogue telephone services;, ICT systems or ICT products means an ICT product as defined in Article 2, point (12), of Regulation (EU) 2019/881; that may be subject to the coordinated security risk means the potential for loss or disruption caused by an incident and is to be expressed as a combination of the magnitude of such loss or disruption and the likelihood of occurrence of the incident; assessment referred to in paragraph 1.