In one of the most significant cybersecurity policy reforms in recent memory, the Cybersecurity and Infrastructure Security Agency (CISA, part of the US Department of Homeland Security or DHS) has released its much-anticipated notice of proposed rulemaking (NPOR) to require critical infrastructure organizations to report cybersecurity incidents.
The move is