Home
Events
May
May-8-24_CIRCIA_Webinar

May-8-24_CIRCIA_Webinar

CIRCIA Reporting Requirements and Potential Impact on Colleges and Universities

with Sarah Bigham (REN-ISAC)

Wednesday, May 8
Noon ET
Download Slides

Description

In March 2022, President Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA). Enactment of CIRCIA marked an important milestone in improving America’s cybersecurity by, among other things, requiring the Cybersecurity and Infrastructure Security Agency (CISA) to develop and implement regulations requiring covered entities to report covered cyber incidents and ransomware payments to CISA. These reports will allow CISA to rapidly deploy resources and render assistance to victims suffering attacks, analyze incoming reporting across sectors to spot trends, and quickly share that information with network defenders to warn other potential victims. Although the legislation is done, the proposed rule for implementation has not been finalized. A comment period is now open until July 3, 2024.

Please join us for an interactive webinar to discuss the details of the proposed rule and how to submit feedback.

Speaker

Sarah Bigham
Lead Security Analyst, REN-ISAC

Sarah joined the REN-ISAC Operations team in March 2014. As Lead Security Analyst, her day-to-day responsibilities include CSIRT & InfoSec duties, and liaising with the National Council of ISACs (NCI), FBI, DHS, and other state and federal peers to stay abreast of new and emerging threats. Before coming to the REN-ISAC, Sarah worked at Harvard University as a Systems Support Specialist focusing on campus-wide Identity & Access Management (IdM) and HIPAA compliance for Harvard University Health Services. Prior to that, Sarah was a defense contractor at the United States Naval Academy where she focused on user and desktop support across the Yard for all faculty, staff, and midshipmen. Sarah holds an Associate of Applied Science in Computer Network Management from the Anne Arundel Community College (Annapolis, MD) and a Bachelor of Science in Information Systems Management from the University of Maryland University College.

Additional Resources

Abbreviated Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) of 2022 (REN-ISAC)

Covered Entity Fact Sheet (CISA)

Article: CISA wants ‘high-quality feedback’ for another month on CIRCIA rule (The Record)

Sharing Information

This recording is open to the public, as well as designated representatives of REN-ISAC member institutions. Information is classified TLP:CLEAR.