According to § 22 Abs. 2 and Abs. 3 of the Austrian implementation
of the NIS-Directive (Netz- und
Informationssystemsicherheitsgesetzes - NISG) the Austrian GovCERT is
tasked with receiving reports concerning risks, incidents and security
incidents in IT from entities of the Austrian public administration.
For other entities in Austria, the competent authority for NIS-reports is CERT.at.
Reports concerning risks, incident and security incidents in public administration can be made via the NIS portal at nis.govcert.gv.at.