CISA incident reporting law places an emphasis on interagency coordination with creation of federal council

The new cyber incident reporting law directs CISA and DHS to work with interagency partners to develop mechanisms for sharing reports across the government, and also creates a Cyber Incident Reporting Council with responsibility for harmonizing reporting requirements already on the books at other agencies.

The law sets up a reporting regime under CISA for critical infrastructure owners to report cyber incidents within 72 hours and a 24-hour requirement for reporting ransomware payments. President Biden signed the major piece...