DHS Holds Cyber Incident Reporting Listening Sessions for Critical Infrastructure Act of 2022
International Liquid Terminals Association
  • Join

Newsletter

A respected industry publication for ILTA members, this monthly newsletter highlights legislative and regulatory activities affecting terminal facilities. It also provides news on recent business development within the terminal industry, including new construction, expansions, acquisitions and additions to ILTA's membership, as well as important information about ILTA's committee meetings, conferences and training events. ILTA also offers ILTA News Plus to members. This publication, sent on weeks that ILTA News is not published, aggregates industry and member news.

Not a member? Join ILTA today and stay up to date with weekly and monthly newsletters.

Michael Stroud
/ Categories: ILTA News Articles

DHS Holds Cyber Incident Reporting Listening Sessions for Critical Infrastructure Act of 2022

The U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) is continuing with its public listening sessions and receiving written statements from the public regarding cybersecurity regulations. CISA is hosting these sessions to gather public input on implementing regulations requiring covered entities to report covered cyber incidents and ransomware payments to CISA. The public listening sessions are being held in the following locations and at the following places https://www.cisa.gov/circia

As background, in 2022, the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), reporting act. The CIRCIA builds on previous legislation that creates a cyber incident reporting function at CISA. The CIRCIA legislation requires the reporting of cyber incidents that impact covered entities underway rulemaking Ture sectors identified by Presidential Policy Directive 21. The term covered entities remain to be defined and are part of the rulemaking that is underway.

The proposed regulations are designed to help CISA understand the important issues for the industry and relevant stakeholders. These reports will allow CISA to rapidly deploy resources and render assistance to victims suffering attacks, analyze incoming reporting across sectors to spot trends, and quickly share that information with network defenders to warn other potential victims. CISA is particularly interested in input on definitions for and interpretations of the terminology to be used in the proposed regulations, as well as the form, manner, content, and procedures for submission of reports required under CIRCIA. 

In addition, CISA is also interested in information regarding other incident reporting requirements and other policies and procedures, such as enforcement procedures and information protection policies, which will be required for the implementation of the regulations. CISA seeks comments and input either in the form of public testimony and/or written comments. All comments for the preliminary process are due by November 14, 2022.

Previous Article Member Feature: Byrne D. Evans
Next Article Rail Worker Strike Threat Lingers
Print
560 Rate this article:
No rating
Please login or register to post comments.