Article 6(5) of Regulation (EU) 2022/2554 requires financial entitiesas defined in Article 2, points (a) to (t) to review their ICT riskmeans any reasonably identifiable circumstance in relation to the use of network and information systems which, if materialised, may compromise the security of the network and information systems, of any technology dependent tool or process, of operations and processes, or of the provision of services by producing adverse effects in the digital or physical environment; management framework and to provide their competent authorityas defined in Article 46 with a report on that review. To enable competent authoritiesas defined in Article 46 to easily process the information in those reports, and to guarantee an adequate transmission of that information, financial entitiesas defined in Article 2, points (a) to (t) should submit those reports in a searchable electronic format.