On March 15, 2022, President Biden signed into law the 2022 Consolidated Appropriations Act containing the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (the “Cyber Incident Reporting Act”). While President Biden’s remarks highlighted the $13.6 billion in funding “to address Russia’s invasion of Ukraine and the impact on surrounding countries,” the 2022 Consolidated Appropriations Act contained numerous other laws, including the Cyber Incident Reporting Act, which should not be overlooked. The Cyber Incident Reporting Act puts in motion important new cybersecurity reporting requirements that will likely apply to businesses in almost every major sector of the economy, including health care, financial services, energy, transportation and commercial facilities. Critical infrastructure entities should monitor the upcoming rule-making by the Cybersecurity and Infrastructure Security Agency (“CISA”), as the final regulations will clarify the scope and application of the new law.
Blog Editors
Recent Updates
- New Federal Agency Policies and Protocols for Artificial Intelligence Utilization and Procurement Can Provide Useful Guidance for Private Entities
- Video: Non-Competes Eased, Anti-DEI Rule Blocked, Contractor Rule in Limbo - Employment Law This Week
- Video: Insider Strategies for Wage and Hour Compliance Success: One-on-One with Paul DeCamp
- Video: Can the President Fire NLRB Members Without Cause? SCOTUS May Decide - Employment Law This Week
- The Third Circuit Orders Another Review in Cornelius v. CVS Pharmacy, Inc.—Resolution Will Wait for Another Day in New Jersey Federal Court, but Not Because of the EFAA