News & Analysis as of May 4, 2025

Proposed Rules

+ Follow

DHS and Cyber: What Should Companies Expect?

TSA rule would require cyber risk management for railroads, buses, and pipeline operators

Hogan Lovells on 12/10/2024

On November 6, 2024, the Transportation Security Administration (TSA) published a Notice of Proposed Rulemaking (NPRM) that would mandate cyber risk management and reporting requirements for certain surface transportation...more

Feds Focus on Data Privacy and Cybersecurity in Latest Legislative and Rule Proposals

Parker Poe Adams & Bernstein LLP on 5/1/2024

By now, companies that collect, process, and store the personal data of consumers are used to a fast pace of state privacy and cybersecurity legal activity. This year, companies should also expect increased activity from...more

Comments Sought on Proposed Requirements of the Cyber Incident Reporting for Critical ‎Infrastructure Act

Schwabe, Williamson & Wyatt PC on 4/10/2024

On March 15, 2022, the Cyber Incident Reporting for Critical Infrastructure Act of 2022 was signed into law. Generally, CIRCIA requires “covered entities,” defined as entities in certain critical infrastructure sectors, to...more

Proposed Federal Cyber Incident Reporting Rule Adds Hefty Federal Reporting Requirements to Critical Infrastructure Sector and...

Woods Rogers on 3/28/2024

The federal Cybersecurity and Infrastructure Security Agency (CISA) released a draft of its proposed rule detailing how covered entities operating in critical infrastructure sectors report cyberattacks and ransomware payments...more

“FAR” Reaching Consequences: Proposed FAR Cybersecurity Requirements Will Add New Obligations for Contractors

Paul Hastings LLP on 10/25/2023

Earlier this month the Federal Acquisition Regulation (“FAR”) Council released two draft rules which would impose new cybersecurity requirements for federal contractors. The proposed rules, Cyber Threat and Incident Reporting...more

5 Results

View per page