Palo Alto Networks seeks clarity on third-party incident reporting submissions under CISA’s proposed regulation

Guidance for third-party submitters who file incident reports on behalf of a “covered entity” would be helpful as CISA works to develop a proposed rule to implement its mandatory reporting regime, according to security firm Palo Alto Networks.

Allowing third-party incident response firms to assist with the submission of reports on behalf of covered entities is "sensible,” Palo Alto Networks argues in recent comments to CISA. The security firm says “third-party incident response firms are often best positioned to...