Krzysztof Dąbrowski (Director of the Security Division) and Bartłomiej Getlich (Director of the Safety and Information Security Department) spoke at the ‘SafeBank’ conference – an annual meeting of experts from financial sector, public administration and supervisory institutions, dedicated to challenges regarding the security and operational resilience of banks.

Krzysztof Dąbrowski gave introductory remarks during a panel titled ‘From regulation to action: DORA, CER Directive,[CH1.1] and NIS2 in the banking sector’ by presenting steps towards the integration of standards under the three EU regulations. He underlined the importance of the work done by banks and the model cooperation with the UKNF in the area of incident reporting and information exchange under DORA, now fully enforceable.

He also discussed the financial supervisor’s preparations to perform new tasks arising from the proposal amending the Act on crisis management and certain other acts. The UKNF strives to avoid the overlapping of requirements for financial market entities to which the Act applies, arising from both the Directive on the resilience of critical entities [CH2.1](CER Directive[CH3.1]) and DORA. The financial supervisor is in favour of using existing components, such as reporting under DORA, and a comprehensive approach to physical security (CER) and digital resilience (DORA).

Bartłomiej Getlich elaborated on the ongoing implementation of CER Directive and presented the proposed requirements for the critical infrastructure operators and critical entities to be selected following the entry into force of the amendment to the Act on crisis management. He presented a tentative schedule of tasks and the priorities for 2026.

He also represented the UKNF in a discussion panel dedicated to the resilience of the banking sector. The panellists discussed challenges for supervised entities as well as opportunities arising from the role of critical infrastructure operator in the light of DORA, CER Directive, and NIS2.