Skip to content

DHS Proposes Critical Infrastructure Reporting Rules

Posted by: GuidePoint Security

< 1 min read

March 27, 2024 – Published on Dark Reading

The Department of Homeland Security today previewed a set of proposed rules for how critical infrastructure organizations should report cyber incidents to the federal government.

The reporting process will be overseen by the Cybersecurity and Infrastructure Security Agency (CISA), a stipulation of the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). The proposed rules will officially be published on April 4; DHS offered no explanation for what amounts to an early release.

CIRCIA was signed into law in March 2022 with the goal of improving America’s cybersecurity by being able to deploy resources faster as well as assist victims in the face of cyberattacks, among other objectives. Under CIRCIA, CISA is required to “promulgate regulations implementing the statute’s covered cyber incident and ransom payment reporting requirements for covered entities,” DHS said in its March 27 preview. 

Chris Warner, OT security strategist at GuidePoint Security, noted that while certain challenges arise with this kind of policymaking, it also poses substantial advantages. 

Read More HERE.

Categories: Governance, Risk & Compliance
Tags:OT

GuidePoint Security

Another Cyberattack on Critical Infrastructure and the Outlook on Cyberwarfare
December 8, 2023 – Published on InformationWeek CyberAv3ngers, an Iranian Government Islamic Revolutionary Guard Corps (IRGC)-affiliated group, claimed credit for a […]
View Page

Related Articles

View All

  • Cybersecurity
Another Cyberattack on Critical Infrastructure and the Outlook on Cyberwarfare
Read More < 1 min read
  • Governance, Risk & Compliance
Governance, Risk & Compliance (GRC) Practice
Read More < 1 min read
  • Cybersecurity
Navigating OT/IT convergence and securing ICS environments
Read More < 1 min read