Inside Cybersecurity

January 16, 2025

Daily News

Water sector groups urge CISA to align sector-specific covered entity definition with SEC disclosure rulemaking

By Jacob Livesay / July 3, 2024

The Cybersecurity and Infrastructure Security Agency's proposed incident reporting rule should be scoped for the water sector to only address investor-owned water utilities currently required to disclose cyber incidents to Securities and Exchange Commission, according to a coalition of trade associations.

The water-focused coalition requests in their June 28 comments to CISA that the agency "redefine ‘covered entities’ in the final rule to include only water systems currently subject to the SEC reporting obligations,” in order to follow the...


Log in to access this content.


Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.