8 Questions To Ask Before Final CISA Breach Reporting Rule

8 Questions To Ask Before Final CISA Breach Reporting Rule


In an expert analysis published by Law360, Special Counsel Arianna Evers, Counsel Shannon Mercer and Associates Meredith Yates and Shervin Taheran share eight questions compliance personnel should ask about recent rules proposed by the Cybersecurity and Infrastructure Security Agency (CISA).

Excerpt: “On April 4, the Cybersecurity and Infrastructure Security Agency published a notice of proposed rulemaking setting out mandatory reporting requirements for covered entities that experience cybersecurity incidents or make ransom payments in relation to a cybersecurity incident. While the rule will inevitably change following the notice and comment period, the proposed rule represents the overall approach that CISA will take when it promulgates a final rule.

Complying with the new rule will take considerable preparation, and companies should begin planning for compliance now.”

Read full article.



Unless you are an existing client, before communicating with WilmerHale by e-mail (or otherwise), please read the Disclaimer referenced by this link.(The Disclaimer is also accessible from the opening of this website). As noted therein, until you have received from us a written statement that we represent you in a particular manner (an "engagement letter") you should not send to us any confidential information about any such matter. After we have undertaken representation of you concerning a matter, you will be our client, and we may thereafter exchange confidential information freely.

Thank you for your interest in WilmerHale.