CISA hears from business, pipeline groups on considerations for upcoming reporting regime

Two large associations urged CISA to set a high bar for incidents that should be reported and called for bidirectional information sharing at the agency’s Washington, DC listening session on Wednesday.

The U.S. Chamber of Commerce’s Matthew Eggers walked through several definitions in the incident reporting law, providing input on how they should be defined in the upcoming cyber regulation including what should be considered a “covered entity” and a “covered cyber incident.”

The law uses the definition for “covered...