On March 27, 2024, the U.S. Cybersecurity and Infrastructure Agency (CISA) posted a Notice of Proposed Rulemaking (NPRM) that would establish national cyber incident and ransom payment reporting requirements, as mandated by the Cyber Incident Reporting for...

On Tuesday, the Cybersecurity & Infrastructure Security Agency (CISA) released the second iteration of their Secure by Design plan, “Secure by Design-Shifting the Balance of Cybersecurity Risk: Principles and Approaches for Secure by Design Software.”...