Operator of Essential Services ("OES") under the provisions of section 42 of the Civil Contingency Act 2007 (the “Act”), are required to use the form below to report cyber security incidents.
This is applicable for any cyber security incident which could potentially impact on the continuity of the essential service being provided.
Digital Service Providers (“DSP”) under the provisions of section 43 of the Act, should also use the form below to report cyber security incidents.
This is applicable for any cyber security incident having a substantial impact on the provision of the digital service.
The form should be submitted as soon as possible but no later than 72 hours after becoming aware of an incident.
Please do not complete and submit the form from a network that you believe has been compromised. Use a separate system to complete and submit the incident report form.