United States of America: Closed consultations on CISA regulations under CIRCIA

On 14 November 2022, the Cybersecurity and Infrastructure Security Agency (CISA) closed its consultation on the regulations required under the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA). The CISA gathered information regarding the definition of "covered entity", the information that should be included in the cyber incidents reports and the security vulnerabilities any entity that has suffered from cyber attacks has to disclose.