Electricity giant Exelon trumpets benefits of cyber framework, suggests approaches to incident reporting and metrics

Electricity generator and distributor Exelon would like to see a model cyber incident reporting regulation added to an updated cybersecurity framework, while the utility giant also discusses metrics, vendor cybersecurity and more in its comments to NIST on a possible CSF 2.0.

“In the past two years, there has been a significant increase in the number of governing bodies that are developing a mandatory incident reporting requirement. It would be incredibly helpful if NIST could work with the private sector...