Understanding the Cyber Incident Reporting for Critical Infrastructure Act

April 4, 2024 by John Farley, Gallagher

on March 27, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) announced their proposed rules for the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA).*

The CIRCIA legislation is aimed at enhancing the cybersecurity of critical infrastructure sectors and improving incident reporting to relevant government agencies.

While the proposed rules aren’t expected to be finalized until at least 18 months from now, it’s important for affected organizations to be familiar with the key aspects of the CIRCIA reporting requirements.

Cyber Incident Reporting for Critical Infrastructure Act highlights

Scope and applicability

CIRCIA applies to organizations operating in critical infrastructure sectors. If your organization falls within these sectors, it’s important to understand the reporting obligations outlined in CIRCIA:

Understanding the Cyber Incident Reporting for Critical Infrastructure Act

Cyber Incident Reporting for Critical Infrastructure Act highlights

Featured

Decoding branch performance: Gathering key insights to grow core deposits

3 ways your credit union can attract younger members

Untangling mental health: Why we dodge important talks

The CUInsight Experience podcast: Jennifer Borowy – Heart to serve (#184)

Stay connected to the credit union community with our free newsletter!

You have Successfully Subscribed!