Incident Reporting Regulations Summary and Chart

Incident Reporting Regulations Summary and Chart

A growing number of regulations require organizations to report significant cybersecurity incidents. We've created a chart that summarizes 11 proposed and current cyber incident reporting regulations and breaks down their common elements, such as who must report, what cyber incidents must be reported, the deadline for reporting, and more.

Download the chart now

This chart is intended as an educational tool to enhance the security community’s awareness of upcoming public policy actions, and provide a big picture look at how the incident reporting regulatory environment is unfolding. Please note, this chart is not comprehensive (there are even more incident reporting regulations out there!) and is only current as of August 8, 2022. Many of the regulations are subject to change.

This summary is for educational purposes only and nothing in this summary is intended as, or constitutes, legal advice.

Peter Woolverton led the research and initial drafting of this chart.


NEVER MISS A BLOG


Get the latest stories, expertise, and news about security today.




Additional reading:

Avoiding Smash and Grab Under the SEC’s Proposed Cyber RuleNavigating the Evolving Patchwork of Incident Reporting RequirementsNew US Law to Require Cyber Incident ReportsHow Ransomware Is Changing US Federal Policy

Support the originator by clicking the read the rest link below.