Craig NewmarkMar 13, 2023

(This is a really big deal for #CyberCivilDefense #cybersecurity, helping get everyone to get to work together to defend everyone)

Multiple industry groups, led by Cyber Threat Alliance and [email protected], have released the Cyber Incident Reporting Framework: Global Edition, an updated, global version of the Cyber Incident Reporting Framework.
The #CIRFGlobal develops a model reporting format for cybersecurity authorities and other government authorities worldwide.
https://securityandtechnology.org/virtual-library/reports/cyber-incident-reporting-framework-global-edition/

Cyber Incident Reporting Framework: Global Edition

The Cyber Incident Reporting Framework: Global Edition answers questions about what conditions should be in place to make a reporting mandate effective and harmonizes suggested definitions with existing global regulations.

Institute for Security and Technology
Institute for Security and TechnologyMar 10, 2023

NEW from Cyber Threat Alliance and IST: Cyber Incident Reporting Framework: Global Edition

We are releasing an updated, global version of the Cyber Incident Reporting Framework that answers questions about what conditions should be in place to make a reporting mandate effective and harmonizes suggested definitions with existing global regulations.

Last fall, we released the #Cyber Incident Reporting Framework to provide input regarding cyber incident reporting frameworks in the U.S. We identified a set of principles that the incident reporting regulation should incorporate and developed a set of model reporting formats the Cybersecurity and Infrastructure Security Agency could use as the foundation for the reporting forms.

We heard from our partners that a reporting framework would be helpful for governments and the multi stakeholder community across the globe, so we adapted the framework to make it applicable to and useful for a global audience.

The #CIRFGlobal develops a model reporting format that #cybersecurity authorities and other government authorities worldwide could use as the foundation for their national reporting frameworks and regulatory language. It also provides input to national cybersecurity authorities and national legislative bodies that are considering implementing a mandate for reporting cybersecurity incidents to government entities and/or encouraging the voluntary reporting of less substantial incidents.

Thank you to Chainalysis Inc., CipherTrace, CREST, CYBERA, Cybercrime Support Network, and CyberPeace Institute for their support in developing this framework!

https://securityandtechnology.org/virtual-library/reports/cyber-incident-reporting-framework-global-edition/

Cyber Incident Reporting Framework: Global Edition

The Cyber Incident Reporting Framework: Global Edition answers questions about what conditions should be in place to make a reporting mandate effective and harmonizes suggested definitions with existing global regulations.

Institute for Security and Technology