all InfoSec news
New CISA cyber incident reporting draft unveiled
SC Magazine feed for Policy www.scmagazine.com
The Cybersecurity and Infrastructure Security Agency has unveiled a draft cyber incident disclosure rule created under the Cyber Incident Reporting for Critical Infrastructure Act that would mandate organizations part of the 16 designated critical infrastructure sectors to report ransomware incidents and payments within a 72-hour and 24-hour period, respectively, according to CyberScoop.
act agency cisa critical critical infrastructure critical infrastructure sectors cyber cyber incident cyberscoop cybersecurity disclosure draft governance risk and compliance government-regulations incident incident reporting incidents infrastructure infrastructure security organizations payments period ransomware report reporting sectors security under