Menu
Menu
Menu
Use Ctrl + F (or "Command+F" on a Mac) to quickly find text
Accreditation
Shall mean an attestation by a nationalaccreditation body that a conformity assessment body
Source: Regulation (EC) No 765/2008
CER (Critical Entities Resilience Directive)
this new legislation ensures the provision of vital services for our society and our economy, minimising the impact of natural and man-made disruptive incidents.
Source: Directive (EU) 2022/2557
Cybersecurity
Cybersecurity’ means the activities necessary to protect network and information systems, the users of such systems, and other persons affected by cyber threats
Source: Regulation(EU) 2019/881
Cross-border flow
Cross-border flow’ means a physical flow of electricity on a transmission network of a Member State that results from the impact of the activity of producers, customers, or both, outside that Member State on its transmission network
Source: Regulation (EU) 2019/943
Cyber attack
means a malicious ICT-related incident caused by means of an attempt perpetrated by any threat actor todestroy, expose, alter, disable, steal or gain unauthorised access to, or make unauthorised use of, an asset
Source: Regulation (EU) 2022/2554
Cyber threat
cyber threat means any potential circumstance, event or action that could damage, disrupt or otherwise adversely impact network and information systems, the users of such systems and other persons
Source: Regulation(EU) 2019/881
Cyber security
cybersecurity’ means the activities necessary to protect network and information systems, the users of such systems, and other persons affected by cyber threats
Source: Regulation(EU) 2019/881
Cyber incident
incident means an event compromising the availability, authenticity, integrity or confidentiality of stored, transmitted or processed data or of the services offered by, or accessible via, network and information systems
Source: Directive (EU) 2022/2555
Distribution System Operator (DSO)
means a natural or legal person who is responsible for operating, ensuring the maintenance of and, if necessary, developing the distribution system in a given area and, where applicable, its interconnections with other systems, and for ensuring the long-term ability of the system to meet reasonable demands for the distribution of electricity
Source: Directive (EU) 2019/944
Electricity markets
means markets for electricity, including over-the-counter markets and electricity exchanges,markets for the trading of energy, capacity, balancing and ancillary services in all timeframes, including forward,day-ahead and intraday markets
Source: Directive (EU) 2019/944
Energy storage
means, in the electricity system, deferring the final use of electricity to a moment later than when it was generated, or the conversion of electrical energy into a form of energy which can be stored, the storing of such energy, and the subsequent reconversion of such energy into electrical energy or use as another energy carrier
Source: Directive (EU) 2019/944
Entity
entity’ means a natural or legal person created and recognised as such under the national law of its place of establishment, which may, acting under its own name, exercise rights and be subject to obligations;
Source: Directive (EU) 2022/2555
European cybersecurity certification scheme
European cybersecurity certification scheme means a comprehensive set of rules, technical requirements, standards and procedures that are established at Union level and that apply to the certification or conformity assessment of specific ICT products, ICT services or ICT processes
Source: Regulation(EU) 2019/881
ICT product
ICT product means an element or a group of elements of a network or information system
Source: Regulation(EU) 2019/881
ICT risk
ICT risk’ means any reasonably identifiable circumstance in relation to the use of network and information systems which, if materialised, may compromise the security of the network and information systems, of any technology dependent tool or process, of operations and processes, or of the provision of services by producing adverse effects in the digital or physical environment
Source: Regulation (EU) 2022/2554
ICT service
ICT service means a service consisting fully or mainly in the transmission, storing, retrieving or processing of information by means of network and information systems;
Source: Regulation(EU) 2019/881
ICT-related incident
ICT-related incident’ means a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity
Source: Regulation (EU) 2022/2554
Incident
ICT-related incident’ means a single event or a series of linked events unplanned by the financial entity that compromises the security of the network and information systems, and have an adverse impact on the availability, authenticity, integrity or confidentiality of data, or on the services provided by the financial entity
Source: Directive (EU) 2016/1148
Large-scale cybersecurity security incident
large-scale cybersecurity incident’ means an incident which causes a level of disruption that exceeds a Member State’s capacity to respond to it or which has a significant impact on at least two Member States
Source: Directive (EU) 2022/2555
Legacy ICT system
legacy ICT system’ means an ICT system that has reached the end of its lifecycle (end-of-life), that is not suitable for upgrades or fixes, for technological or commercial reasons, or is no longer supported by its supplier or by an ICT third-party service provider, but that is still in use and supports the functions of the financial entity
Source: Regulation (EU) 2022/2554
Managed service provider
managed service provider means an entity that provides services related to the installation, management, operation or maintenance of ICT products, networks, infrastructure, applications or any other network and information systems, via assistance or active administration carried out either on customers’ premises or remotely;
Source: Directive (EU) 2022/2555
Market operator
market operator means an entity that provides a service whereby the offers to sell electricity are matched with bids to buy electricity
Source: Regulation (EU) 2019/943
NCCS (Network Code on Cybersecurity)
the Network Code on Cybersecurity (NCCS) aims to set a European standard for the cybersecurity of cross-border electricity flows.
Source: Regulation (EU) 2024/1366
NIS 2 (Network Information Security Directive)
the NIS2 is designed to strengthen the cybersecurity posture of EU critical infrastructure entities or industries to meet basic compliance requirements.
Source: Directive (EU) 2022/2555
Power generating facility
power-generating facility means a facility that converts primary energy into electrical energy and which consists of one or more power-generating modules connected to a network
Source: Regulation (EU) 2019/943
Producer
means a natural or legal person who generates electricity
Source: Directive (EU) 2019/944
Risk
risk means the potential for loss or disruption caused by an incident and is to be expressed as a combination of the magnitude of such loss or disruption and the likelihood of occurrence of the incident
risk means any reasonably identifiable circumstance or event having a potential adverse effect on the security of network and information systems
Source: Directive (EU) 2022/2555, Directive (EU) 2016/1148
RPR (Risk Preparedness Regulation)
the Risk Preparedness Regulation introduces important rules for the cooperation between Member States with the aim to prevent, prepare for, and manage electricity crises.
Source: Regulation (EU) 2019/941
Significant cyber threat
significant cyber threat means a cyber threat which, based on its technical characteristics, can be assumed to have the potential to have a severe impact on the network and information systems of an entity or the users of the entity’s services by causing considerable material or non-material damage
Source: Directive Directive (EU) 2022/2555
Supply
means the sale, including the resale, of electricity to customers
Source: Directive (EU) 2019/944
Transmission System Operator (TSO)
means a natural or legal person who is responsible for operating, ensuring the maintenance of and, if necessary, developing the transmission system in a given area and, where applicable, its interconnections with other systems, and for ensuring the long-term ability of the system to meet reasonable demands for the transmission of electricity
Source: Directive (EU) 2019/944
Vulnerability
vulnerability means a weakness, susceptibility or flaw of ICT products or ICT services that can be exploited by a cyber threat
Source: Directive (EU) 2022/2555
©2024 NIS2U GmbH All Rights Reserved.
