Cybersecurity, Privacy, & AI

Trending Now
Your AI Agent Could Become Your Biggest Insider Threat • The New Cyber Deterrent Isn’t a Weapon. It’s Cyber Recovery. • Commerce OIG Calls for Changes to NIST Vulnerability Database Management • Pentagon Looks to AI, Other Tech to Help Tackle Contested Logistics Challenges • How Defensive Cyber Responds to Hockey-Stick Growth of AI-Driven Threats
Protests & Claims Newsletter Cyber & Privacy Newsletter Compliance & Enforcement Newsletter Development Newsletter Transforming Procurement Newsletter
Published on October 4, 2021 • Cyber

Senate Committee Releases Cyber Incident Reporting Bill

Senate Committee Releases Cyber Incident Reporting Bill

Sherry V Smith | Shutterstock

Senate Homeland Security and Governmental Affairs Committee Chair Gary Peters (D-MI) and Ranking Member Rob Portman (R-OH) have released a bill requiring critical infrastructure owners and operators to report cyber attacks to the government within 72 hours. Another bill is expected which will also require federal agencies and contractors to report incidents. A new Cyber Incident Review Office within CISA would collect and analyze the reports, and issue alerts about threats. A similar measure is found in the NDAA bill newly passed by the House.

If the bill is enacted, organizations with more than 50 employees would be required to consider alternatives to paying ransomware demands, and report it to CISA if they do. CISA would be able to issue subpoenas to organizations that don’t comply with requirements to report incidents or ransomware payments. Those that fail to comply could be referred to the Department of Justice and potentially barred from federal contracting.

Source:

Stay compliant and protected with daily updates on cybersecurity, data privacy, and federal oversight with our Cyber & Privacy newsletter, delivering up-to-the-minute intelligence Monday–Saturday — Subscribe here.

© PubKGroup 2024