Tuesday saw the delivery of a 100-page report from the Department of Homeland Security that included suggestions for how to simplify the maze of reporting requirements for cyber incidents that U.S. critical infrastructure operators must navigate.
The Office of the National Cyber Director, the Federal Trade Commission, the Departments of Energy, Treasury, Defense, and Justice are among the federal agencies that make up the Cyber Incident Reporting Council, which produced the report on Tuesday. It found that critical infrastructure entities must comply with 45 reporting requirements that are currently in effect from 22 different federal agencies, with an additional five reporting requirements that are being considered.