CISA Seeks Public Input on Cyber Incident Reporting Rules

US Cyber Defense Agency Proposes 72-Hour Reporting Rule for Covered Entities
The U.S. Cybersecurity and Infrastructure Security Agency posted to the Federal Register its proposed rule-making aimed at implementing a 72-hour reporting requirement for covered critical infrastructure entities as required under the Cyber Incident Reporting for Critical Infrastructure Act of 2022.

act agency cisa critical critical infrastructure cyber cyber defense cyber incident cybersecurity defense entities federal federal register incident incident reporting infrastructure infrastructure security input making public register reporting rules security under