The updated, global edition of the framework presented here builds off that first document that CTA and IST released in November 2022, and adds significant contextual discussion. It develops a model reporting format that cybersecurity authorities and other government authorities worldwide could use as the foundation for their national reporting frameworks and regulatory language.

The guide to national cybersecurity incident reporting provides input to national cybersecurity authorities (NCAs) and legislative bodies as they consider implementing a range of mandates and voluntary reporting procedures for cybersecurity incidents.

This guide may also be useful for government entities that have mandates relating to reporting data breaches, such as national data protection agencies and ministries of communication, and those that have a role to play in the cybersecurity of specific sectors (e.g., banking regulators). Regional organizations that share best practices and/or create regional cybersecurity regulatory mandates for their member states may also find this guide useful.