The Cybersecurity and Infrastructure Security Agency (CISA) on Friday announced its intent to issue a request for public feedback on the organization’s forthcoming cyber incident reporting rules.
The notice will be published in the Federal Register on September 12. Comments are due 60 days after it is released.
CISA also will hold a series of listening sessions across the country in the coming months to collect additional input, with events slated in cities like Oakland, Boston, Atlanta and Chicago.
CISA Director Jen Easterly earlier this week said the agency would undertake the actions to comply with the cyber incident reporting bill that was signed into law in March.
“We don’t want to burden industry and we don’t want to burden the federal government with noise either,” she said at the Billington Cybersecurity Summit in Washington.
The measure was viewed as a necessary step by policymakers and senior White House officials alike after a year marked by major hacks, including the SolarWinds breach and the ransomware attacks on the Colonial Pipeline and meat processing giant JBS.
“We can’t defend what we don’t know about and the information we receive will help us fill critical information gaps that will inform the guidance we share with the entire community, ultimately better defending the nation against cyber threats,” Easterly said today in a statement.
The Homeland Security Department is also spearheading the Cyber Incident Reporting Council, which was created by the legislation, and will help inform the new proposed rule, according to CISA.
The post CISA preps solicitation for public feedback on incident reporting rule appeared first on The Record by Recorded Future.
Article Link: CISA preps solicitation for public feedback on incident reporting rule - The Record by Recorded Future