Inside Cybersecurity

June 25, 2024

Daily News

CISA clarifies sector-based criteria for transportation system entities under incident reporting proposed rule

By Sara Friedman / May 30, 2024

The Cybersecurity and Infrastructure Security Agency is issuing a correction to its notice of proposed rulemaking to establish a mandatory incident reporting regime, clarifying sector-based criteria for transportation system entities.

The agency was directed to craft the NPRM through the 2022 Cyber Incident Reporting for Critical Infrastructure Act and it was published on April 4. The comment period ends on July 3.

“The NPRM proposes regulations to implement CIRCIA’s covered cyber incident and ransom payment reporting requirements for covered...

Log in to access this content.

Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.