Inside Cybersecurity

March 29, 2023

Home Page

Home Page

By Sara Friedman

The Cybersecurity and Infrastructure Security Agency has focused over the past year on building the infrastructure to support its upcoming mandatory incident reporting regime, according to Director Jen Easterly, who provided House appropriators details on the fiscal 2024 funding needed for implementation.

By Sara Friedman

USTelecom wants the Federal Communications Commission to use a “harm-based trigger” to determine when the clock for reporting a data breach should begin and argues that several other stakeholders are supportive in its reply comments submission on an FCC proposed rule.

By Charlie Mitchell

Transportation Security Administration chief David Pekoske made the case for increased cyber funding in an appearance before House appropriators, while noting that an upcoming document will align TSA’s work with the new national cyber strategy and other DHS priorities.

By Charlie Mitchell

House Homeland Security cyber subcommittee ranking member Eric Swalwell (D-CA) is seeking information from CISA on plans for an industrial control system training program authorized in the fiscal 2023 National Defense Authorization Act passed late last year.

By Sara Friedman

The Office of the National Cyber Director is working on a request for information to get feedback from stakeholders on regulatory harmonization, according to principal deputy Rob Knake, as work to implement the national cyber strategy gets underway.

By Sara Friedman

NIST’s effort to move its cybersecurity framework informative references online is a cause for concern, according to the Cybersecurity Coalition, which argues that there should be multiple options in the CSF 2.0 update.

RECENT NEWS

Energy and Commerce panel clears variety of cyber bills for House floor consideration
Ransomware attacks hit health sector hardest in 2022, FBI says
Moody’s report cites cyber vulnerabilities related to interoperability of blockchains
White House order sets restrictions on U.S. government use of commercial spyware
National cyber strategy pushes for securing Internet of Things devices through collaboration, labeling work
CISA’s Wales provides progress update on incident reporting law implementation
FS-ISAC warns of hacktivist attacks, growing sophistication of cyber criminals in annual report

MORE NEWS ›

Working Remotely?

If you are unable to access this service in the usual way because you are working remotely, let us know and we’ll provide you with temporary access credentials. Contact us at access@iwpnews.com.

Topics

Biden's Executive Order
CISA releases proposed architecture for agencies to address identity management interoperability
TSA’s security ‘action’ for aviation aims to publicly align key cyber requirements across sectors
CISA budget request includes $408 million to support CDM program, $86 million for stakeholder engagement
TSA ‘emergency action’ updates cybersecurity requirements for aviation sector
Incident Reporting Law
SEC votes to issue proposals on consumer data security, cyber requirements for financial entities
CISA proposes scaling up funding to support incident reporting law implementation in fiscal 2024 budget
CISA launches pilot program to provide alerts on ransomware vulnerabilities
Nonprofit-led coalition offers incident reporting framework focused on global harmonization
SEC CYBER RULES
U.S. Chamber urges NIST to consider breadth of current framework profiles in CSF 2.0 update, avoid being prescriptive
Banking group puts a focus on implementing incident reporting rules at multiple agencies, opportunities for collaboration
Industry stakeholders highlight automation, incident report planning as key elements of upcoming CISA regime
SEC strategic plan includes bolstering its own data security, meeting market demand for info on companies’ cyber practices
FTC Cyber Rules
Hunton law firm group details considerations for FTC proposal on ‘commercial surveillance’
California AG pushes FTC for ambitious approach to regulating ‘commercial surveillance,’ emphasizes health data
U.S. Chamber of Commerce takes aim at FTC ‘commercial surveillance’ proposal, says agency exceeds authority
Commerce agency says FTC ‘commercial surveillance’ proposal helps drive unified approach to privacy
Zero Trust
Zero trust: NSA issues guidance targeted at national security systems; civilian agencies request funding for fiscal 2024
White House budget plan seeks $3.1 billion to support CISA fiscal 2024 initiatives, funding to support national cyber strategy
House Homeland leaders praise telecom security panel recommendations around regulatory harmonization
Defense Dept. releases cybersecurity reference architecture designed to meet cyber EO requirements
National Cyber Strategy
FTC seeks details on cloud service provider security, competitive business practices
IT-sector small business leader urges role for coordinating councils in cyber strategy implementation
IST’s Stifel: Time is right to re-examine incentives under new national cyber strategy
Industry leader: OMB should take lead in deconflicting regs under national cyber strategy
CSF 2.0
Electric sector group offers NIST considerations around measurement, assessment for CSF 2.0 update
CISA issues revised performance goals aligned with NIST cybersecurity framework
Tech group offers ways to expand utility of NIST cybersecurity framework through creating crosswalks, more mappings
Banking group urges NIST to add new functions to CSF 2.0 around governance, supply chain
Supply Chain
Cyber Readiness Institute provides updated security program for small business, aligning with CISA priorities
Commerce Dept. proposes ‘national security guardrails’ for incentives under CHIPS program
Warner-Thune ‘RESTRICT Act’ on foreign tech transactions picks up bipartisan support
Energy Department plans to expand threat analysis pilot program under fiscal 2024 spending request