CISA Announces Effort to Revise the National Cyber Incident Response Plan>
Global Security Org –
The Cybersecurity and Infrastructure Security Agency (CISA) has announced its next steps to update the National Cyber Incident Response Plan (NCIRP) in line with the President’s National Cybersecurity Strategy.
CISA aims to gather input from public and private sector partners, including government agencies, regulators, and critical infrastructure organizations, to identify key changes for incorporation into the updated plan.
The NCIRP, initially published in 2016, serves as the framework for coordinated response to significant cyber incidents in the United States.
However, since its release, the cybersecurity threat landscape and the national response ecosystem have evolved significantly.
Through the Joint Cyber Defense Collaborative (JCDC), CISA will ensure that the updated NCIRP addresses important policy and operational changes, such as the establishment of CISA and the Office of the National Cyber Director, advances in private sector incident response capabilities, increased international collaboration, shifts in the threat environment (including ransomware threats and adversary capabilities), and new authorities, policies, and coordination mechanisms.
CISA emphasizes the importance of transparency and collaboration in updating the NCIRP, recognizing the critical role played by the private sector as the first responders in many cyber incidents and the global nature of today’s cyber threats.
The goal is to create an agile and actionable framework that facilitates coherent coordination among all organizations involved in cyber incident response.
The success of this effort relies on input from partners to ensure the NCIRP effectively helps the nation and its allies respond to and recover from cyber incidents, minimizing harm to victims.
Federal CISO and Deputy National Cyber Director Christopher DeRusha highlights the collaborative nature of the initiative, emphasizing the need to shift responsibility to more capable actors, both in the public and private sectors, to address the evolving threat landscape.
The NCIRP 2024 planning initiative is part of the JCDC agenda, fostering government and private sector collaboration to execute cyber defense plans and achieve risk reduction goals.
Organizations are encouraged to participate in this long-term effort and stay updated on the development of the NCIRP 2024.
Detailed information can be found on the CISA website and the NCIRP webpage.
CISA, as the nation’s cyber defense agency, leads efforts to understand, manage, and reduce risks to both digital and physical infrastructure in the United States.
They provide resources and information on cybersecurity at CISA.gov and offer guidance on network protection at CISA.gov/shields-up.
Link: https://www.globalsecurity.org/security/library/news/2023/10/sec-231020-cisa01.htm