incident reporting Archives

The headquarters of the Securities and Exchange Commission is seen in Washington, D.C., on Jan. 28, 2021. (Photo by Saul Loeb /AFP via Getty Images)

Study finds ‘significant uptick’ in cybersecurity disclosures to SEC

However, less than 10% of the disclosures addressed the material impacts of the security incidents.

Dec 19, 2024 By Greg Otto

Network data transfer speed on a dark background. (Getty Images)

Industry trade groups still have ‘concerns’ with cyber reporting mandate

21 organizations representing critical infrastructure interest groups ask Jen Easterly to have CISA go back to the drawing board.

Oct 31, 2024 By Christian Vasquez

Brandon Wales, then-Acting Director Cybersecurity and Information Security Agency at U.S. Department of Homeland Security speaks during a Senate Homeland Security and Governmental Affairs Committee hearing May 11, 2021 on Capitol Hill. (Photo by Tasos Katopodis-Pool/Getty Images)

Brandon Wales reflects on 20 years of cyber as he leaves CISA

SolarWinds, election security and protecting federal networks were among the highlights, he said in an interview with CyberScoop.

Aug 8, 2024 By Tim Starks

A business office is tied up in regulations. (Getty Images)

Critical infrastructure organizations want CISA to dial back cyber reporting

Public comments from industry on the cyber agency’s draft proposal call for clearer terms and hard limits on what information can be collected.

Jul 8, 2024 By Christian Vasquez

Congress, lawmakers, U.S. Capitol Building, incident reporting, CISA — The U.S. Capitol is seen in Washington, D.C., on Jan. 22, 2018. (MANDEL NGAN/AFP via Getty Images)

CISA’s incident reporting requirements go too far, trade groups and lawmakers say

The draft cyber incident reporting rule faced significant pushback during a House hearing Wednesday, with industry groups arguing for a narrower reporting requirement.

May 1, 2024 By Christian Vasquez

Light trails on black background. (Getty Images)

CISA faces resource challenge in implementing cyber reporting rules

The Cybersecurity and Infrastructure Security Agency’s reporting requirements represent a sea change for when private entities will have to report cybersecurity incidents.

Apr 2, 2024 By Christian Vasquez

Jen Easterly, Director of the Homeland Security Department’s Cybersecurity and Infrastructure Security Agency, arrives to testify before the House (Select) Strategic Competition Between the United States and the Chinese Communist Party Committee on Capitol Hill on January 31, 2024 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

CISA releases draft rule for cyber incident reporting

The proposal describes when critical infrastructure organizations will be required to report cybersecurity incidents.

Mar 27, 2024 By Christian Vasquez

Cybersecurity and Infrastructure Security Agency Director Jen Easterly testified before a House Homeland Security Subcommittee, at the Rayburn House Office Building on April 28, 2022. (Photo by Kevin Dietsch/Getty Images)

DHS council seeks to simplify cyber incident reporting rules

The Biden administration is looking to simplify the dizzying reporting requirements faced by critical infrastructure entities.

Sep 19, 2023 By Christian Vasquez

Jen Easterly (L), Director of the Cybersecurity and Infrastructure Security Agency, and Chris Inglis, the National Cyber Director, testify during their confirmation hearing before the Senate Homeland Security and Governmental Affairs Committee on June 10, 2021 in Washington, DC. (Photo by Kevin Dietsch/Getty Images)

CISA to formally solicit industry feedback on cybersecurity incident reporting rules

CISA Director Jen Easterly will meet with executives to craft a framework for cybersecurity incident reporting that doesn't "burden industry."

Sep 7, 2022 By Suzanne Smalley

threat landscape hearing — Sens. Gary Peters, D-Mich., and Rob Portman, R-Ohio, speak to Secretary of Homeland Security Alejandro Mayorkas, right, after a Senate Homeland Security and Governmental Affairs hearing Sept. 21, 2021 in Washington, D.C. (Photo by Greg Nash – Pool/Getty Images)

The long, bumpy road to cyber incident reporting legislation — and the one still ahead

The legislation eventually garnered widespread support on its way to becoming law, but much remains unresolved.

Mar 24, 2022 By Tim Starks