United States of America: Opened consultations on CISA regulations under CIRCIA

On 12 September 2022, the Cybersecurity and Infrastructure Security Agency (CISA) opened a public consultation on the upcoming regulations required under Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). The CISA aims to gather information from the stakeholders regarding the definition of "covered entity", the information that should be included in the cyber incidents reports and the security vulnerabilities any entity that has suffered from cyber attacks has to disclose. The stakeholders are invited to submit their comments until 14 November 2022.