Preparing For New Mandatory Cyber Reporting Rules

Share on facebook
Share on twitter
Share on linkedin
Share on reddit

By Steven Stransky and Lacy Rex (March 25, 2022, 5:07 PM EDT) — On March 15, President Joe Biden signed into law a federal spending bill containing the Cybersecurity Incident Reporting for Critical Infrastructure Act, which mandates that certain private sector entities notify the Cybersecurity and Infrastructure Security Agency when they suffer a cyber incident or make a ransomware payment.[1]

Although the Cybersecurity Incident Reporting for Critical Infrastructure Act, or CIRCIA, reporting requirements will not become operational until CISA publishes its implementing regulations, which could take several months, businesses should begin assessing whether their incident response plans account for some of the law’s key provisions.

Organizations also need to closely monitor cyber reporting regulations set…

Read more

Explore the site

More from the blog

Latest News