incident reporting Archives

A business office is tied up in regulations. (Getty Images)

Critical infrastructure organizations want CISA to dial back cyber reporting

Public comments from industry on the cyber agency’s draft proposal call for clearer terms and hard limits on what information can be collected.

Jul 8, 2024 By Christian Vasquez

Congress, lawmakers, U.S. Capitol Building, incident reporting, CISA — The U.S. Capitol is seen in Washington, D.C., on Jan. 22, 2018. (MANDEL NGAN/AFP via Getty Images)

CISA’s incident reporting requirements go too far, trade groups and lawmakers say

The draft cyber incident reporting rule faced significant pushback during a House hearing Wednesday, with industry groups arguing for a narrower reporting requirement.

May 1, 2024 By Christian Vasquez

Light trails on black background. (Getty Images)

CISA faces resource challenge in implementing cyber reporting rules

The Cybersecurity and Infrastructure Security Agency’s reporting requirements represent a sea change for when private entities will have to report cybersecurity incidents.

Apr 2, 2024 By Christian Vasquez

Jen Easterly, Director of the Homeland Security Department’s Cybersecurity and Infrastructure Security Agency, arrives to testify before the House (Select) Strategic Competition Between the United States and the Chinese Communist Party Committee on Capitol Hill on January 31, 2024 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

CISA releases draft rule for cyber incident reporting

The proposal describes when critical infrastructure organizations will be required to report cybersecurity incidents.

Mar 27, 2024 By Christian Vasquez

Cybersecurity and Infrastructure Security Agency Director Jen Easterly testified before a House Homeland Security Subcommittee, at the Rayburn House Office Building on April 28, 2022. (Photo by Kevin Dietsch/Getty Images)

DHS council seeks to simplify cyber incident reporting rules

The Biden administration is looking to simplify the dizzying reporting requirements faced by critical infrastructure entities.

Sep 19, 2023 By Christian Vasquez

Jen Easterly (L), Director of the Cybersecurity and Infrastructure Security Agency, and Chris Inglis, the National Cyber Director, testify during their confirmation hearing before the Senate Homeland Security and Governmental Affairs Committee on June 10, 2021 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

CISA to formally solicit industry feedback on cybersecurity incident reporting rules

CISA Director Jen Easterly will meet with executives to craft a framework for cybersecurity incident reporting that doesn't "burden industry."

Sep 7, 2022 By Suzanne Smalley

threat landscape hearing — Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, speak to Secretary of Homeland Security Alejandro Mayorkas, right, after a Senate Homeland Security and Governmental Affairs hearing Sept. 21, 2021 in Washington, D.C. (Photo by Greg Nash – Pool/Getty Images)

The long, bumpy road to cyber incident reporting legislation — and the one still ahead

The legislation eventually garnered widespread support on its way to becoming law, but much remains unresolved.

Mar 24, 2022 By Tim Starks

Major cyber incident reporting requirement, CISA budget hike on precipice of becoming law

The incident reporting legislation, long in the works, also comes with nearly $2.6 billion for the agency for fiscal 2022.

Mar 11, 2022 By Tim Starks

Gary Gensler, Chair of the Securities and Exchange Commission, takes his seat before the start of the Senate Banking, Housing and Urban Affairs Committee hearing on Sept. 14, 2021. (Photo by BILL CLARK/POOL/AFP via Getty Images)

SEC weighs reporting requirements for publicly traded companies

The amendments follow a similar proposal the agency released last month aimed at tightening security for investment firms and advisers.

Mar 9, 2022 By Tonya Riley

Gary Peters, Brandon Wales — Brandon Wales, now-executive director of CISA, greets Sen. Gary Peters, left, at a Senate Homeland Security and Governmental Affairs Committee hearing May 11, 2021. (Photo by Sarah Silbiger-Pool/Getty Images)

Proposal for industries to report big cyberattacks, ransomware payments wins Senate approval

The measure, under which CISA would handle the incident reporting, must still win House approval.

Mar 2, 2022 By Tim Starks