The US Cybersecurity and Infrastructure Security Agency should narrow its scope of which entities and breaches are covered in its proposed reporting rule, trade and business groups agreed in comments submitted during the rulemaking process.
Trade groups and lobbyists for big tech, information technology and banks criticized the breadth of CISA’s proposed rule, contending the latest version of disclosure obligations includes too many sub-sectors beyond critical infrastructure. The current proposal could overwhelm CISA with reports of cyberattacks, according to public comments which were due on July 3.
The replies come as the rulemaking process faces new hurdles from ...
Learn more about Bloomberg Law or Log In to keep reading:
See Breaking News in Context
Bloomberg Law provides trusted coverage of current events enhanced with legal analysis.
Already a subscriber?
Log in to keep reading or access research tools and resources.