From the National Cybersecurity Strategy, March 2023
Effective regulations minimize the cost and burden of compliance, enabling organizations to invest resources in building resilience and defending their systems and assets. By leveraging existing international standards in a manner consistent with current policy and law, regulatory agencies can minimize the burden of unique requirements and reduce the need for regulatory harmonization.
Where Federal regulations are in conflict, duplicative, or overly burdensome, regulators must work together to minimize these harms. When necessary, the United States will pursue cross-border regulatory harmonization to prevent cybersecurity requirements from impeding digital trade flows.
Where feasible, regulators should work to harmonize not only regulations and rules, but also assessments and audits of regulated entities. ONCD, in coordination with the Office of Management and Budget (OMB), will lead the Administration’s efforts on cybersecurity regulatory harmonization. The Cyber Incident Reporting Council will coordinate, deconflict, and harmonize Federal incident reporting requirements.
From the National Cybersecurity Strategy Implementation Plan, July 2023
The Office of the National Cyber Director (ONCD), in coordination with OMB, will work with independent and executive branch regulators, including through the Cybersecurity Forum for Independent and Executive Branch Regulators, to identify opportunities to harmonize baseline cybersecurity requirements for critical infrastructure. Through a request for information, ONCD will also engage non-governmental stakeholders to understand existing challenges with regulatory overlap and explore a framework for reciprocity for baseline requirements.
ONCD, in coordination with the Office of Management and Budget (OMB), will lead the Administration’s efforts on cybersecurity regulatory harmonization. The Cyber Incident Reporting Council will coordinate, deconflict, and harmonize Federal incident reporting requirements.
Completion Date: 1Q FY24
" The IC will invest in developing innovative methods and cultivating new sources, and work more systematically with allies and partners and public and private sector partners to facilitate a common understanding of technological and other risks and how to address them."
The six goals outlined in this National Intelligence Strategy have emerged as our understanding of the kinds of information, technology, and relationships needed to be effective in the future has expanded. Whether we are successful in achieving these goals will depend on whether we can maintain a talented and diverse workforce, and whether we can adapt, increase resilience, and sustain our focus on overcoming the challenges of a rapidly changing environment. I believe we have the capacity, will, and talent to do so.
resilience@rightexposure.com – (703) nine eight nine-eight seven seven seven