“`html

CISA Extends Deadline for Cyber incident Reporting Rules

The Cybersecurity adn Infrastructure Security Agency (CISA) has extended the deadlines for compliance wiht it’s new cyber incident reporting rules, designed to improve the nation’s cybersecurity posture. These rules, mandated by Executive Order 14028, require critical infrastructure organizations to report significant cyber incidents to CISA.

Original Deadlines and the Extension

Originally, organizations were facing staggered deadlines based on their asset size. These deadlines were:

• March 31, 2024: For organizations that operated within the water and wastewater systems sector.
• April 15, 2024: For organizations in the chemical sector.
• May 15, 2024: For organizations in the healthcare and public health sector.
• June 17, 2024: For organizations in the energy sector.
• July 17, 2024: for organizations in the transportation sector.
• August 16, 2024: For organizations in the communications and information technology sectors.
• September 16, 2024: For organizations in the defense industrial base sector.

CISA has now extended all of these deadlines to November 15,2024. As reported by Alston & Bird, this extension is intended to provide organizations with more time to prepare for compliance.

What Incidents Must Be Reported?

The reporting requirements apply to a defined set of “critical infrastructure” sectors. Organizations must report incidents that meet specific criteria,including those that:

• Result in significant loss of confidentiality,integrity,or availability of data or systems.
• Disrupt or degrade the delivery of critical services.
• Involve a system critical to national security.

Ther are also reporting requirements for ransom payments, even if the incident doesn’t meet the criteria above. CISA’s website provides detailed information on what constitutes a reportable incident.

how to Report

Organizations must submit reports through CISA’s online portal. The portal allows for both initial reports and follow-up submissions. The reporting portal can be found on CISA’s website. CISA emphasizes that reports should be submitted as soon as possible after discovery of an incident.

Key Considerations for Reporting

• Timeliness: Prompt reporting is crucial.
• Accuracy: Provide as much accurate information as possible.
• Confidentiality: CISA is committed to protecting the confidentiality of reported information.

Why This matters

These reporting rules are a significant step towards improving national cybersecurity. By collecting information about cyber incidents, CISA can better understand the threat landscape, share intelligence with stakeholders, and coordinate a more effective national response. The extension provides organizations with a valuable possibility to ensure they are prepared to meet these critically important requirements.

Frequently Asked Questions (FAQ)

Q: Who is required to report cyber incidents?

A: Organizations that operate within designated critical infrastructure sectors are required to report certain cyber incidents to CISA.

Q: What types of incidents must be reported?

A: Incidents that result in significant disruption, data loss, or involve systems critical to national security must be reported, as well as ransom payments.

Q: What is the new deadline for reporting