- Dec 14, 2022 3:24 pm GMT
Eric Goldstein, CISA’s executive assistant director for cybersecurity, has outlined three goals for the agency’s upcoming incident reporting regulation:
“We have three goals with incident reporting,” Goldstein said. “The first is to offer help to those who need it,” he said, emphasizing that the U.S. government’s support is “solely voluntary.”
Second, CISA wants to ensure that they are “rapidly sharing information that is actionable and grounded in a reliable sample of adversary activity across the country,”
The third area looks at the broader landscape, Goldstein said. CISA wants to make recommendations on product security features that should be built in by default and Goldstein said “grounding” it in “actual incidents and aggregated trends therein is going to be really impact for the community in driving investments in the right areas.”
Goldstein said, “Our goal is to use incident reporting to harden the landscape so our adversaries have increased costs before executing intrusions on American companies.”
Goldstein said, “We absolutely see mandatory reporting as the floor not the ceiling.
No discussions yet. Start a discussion below.
Get Published - Build a Following
The Energy Central Power Industry Network is based on one core idea - power industry professionals helping each other and advancing the industry by sharing and learning from each other.
If you have an experience or insight to share or have learned something from a conference or seminar, your peers and colleagues on Energy Central want to hear about it. It's also easy to share a link to an article you've liked or an industry resource that you think would be helpful.