CISA’s Expanded Authority and Federal Requirements: Time for Energy, Water, and Other Critical Infrastructure to Recharge Their Cyber Policies
By Ronald I. Raether, Jr., Ashley L. Taylor, Jr. & Daniel Waltz
Critical Infrastructure Must Soon Report Cyber Incidents to CISA Immediately
In March, President Biden signed the “Cyber Incident Reporting for Critical Infrastructure Act” (CIRCIA) into law. CIRCIA applies to the Critical Infrastructure Sector, which includes entities that are “vital to the United States” and whose incapacitation or destruction would have an adverse effect on national security, the economy, or public health and safety. Entities subject to these requirements (Covered Entities) are those which operate in certain sectors of the economy such as, chemical manufacturing, communications, critical manufacturing, dams, defense industrial base, emergency services, energy, financial, food, government facilities, healthcare, information technology, nuclear energy, transportation, and water systems.
Read more