View Rule
View EO 12866 Meetings | Printer-Friendly Version Download RIN Data in XML |
ONCD | RIN: 0301-AA00 | Publication ID: Fall 2023 |
Title: ●Cyber Regulatory Harmonization | |
Abstract:
The Office of the National Cyber Director (ONCD) invites public comments on opportunities for and obstacles to harmonizing cybersecurity regulations. Strategic Objective 1.1 of the National Cybersecurity Strategy [1] recognizes that while voluntary approaches to critical infrastructure cybersecurity have produced meaningful improvements, the lack of mandatory requirements has resulted in inadequate and inconsistent outcomes. The Strategy calls for establishing cybersecurity regulations to secure critical infrastructure where existing measures are insufficient, harmonizing and streamlining new and existing regulations, and enabling regulated entities to afford to achieve security. ONCD, in coordination with the Office of Management and Budget (OMB), has been tasked with leading the Administration’s efforts on cybersecurity regulatory harmonization. [2] We will work with independent and executive branch regulators to identify opportunities to harmonize baseline cybersecurity requirements for critical infrastructure. [3] ONCD seeks input from stakeholders to understand existing challenges with regulatory overlap, and explore a framework for reciprocity (the recognition or acceptance by one regulatory agency of another agency’s assessment, determination, finding, or conclusion with respect to the extent of a regulated entity’s compliance with certain cybersecurity requirements) in regulator acceptance of other regulators’ recognition of compliance with baseline requirements.
[1] https://www.whitehouse.gov/wp- [2] Pursuant to the National Cybersecurity Strategy: ONCD, in coordination with the Office of Management and Budget (OMB), will lead the Administration’s efforts on cybersecurity regulatory harmonization.” [3] Pursuant to the National Cybersecurity Strategy, the Cyber Incident Reporting Council will coordinate, deconflict, and harmonize Federal incident reporting requirements. ONCD is not requesting views from respondents on incident reporting regulations. |
|
Agency: Office of the National Cyber Director(ONCD) | Priority: Info./Admin./Other |
RIN Status: First time published in the Unified Agenda | Agenda Stage of Rulemaking: Prerule Stage |
Major: No | Unfunded Mandates: No |
CFR Citation: 6 CFR Ch. XI ( Parts1100-1199) (To search for a specific CFR, visit the Code of Federal Regulations.) | |
Legal Authority: 6 U.S.C. 1500(c)(1)(C)(v) |
Legal Deadline:
None |
||||||
Timetable:
|
Regulatory Flexibility Analysis Required: No | Government Levels Affected: Federal |
Federalism: No | |
Included in the Regulatory Plan: No | |
International Impacts: This regulatory action will be likely to have international trade and investment effects, or otherwise be of international interest. | |
RIN Data Printed in the FR: No | |
Agency Contact: James Joseph Halpert General Counsel Office of the National Cyber Director New Executive Office Building, 4th Floor, Room 417, 725 17th Street NW, Washington, DC 20503 Phone:202 881-7985 Email: james.j.halpert@ncd.eop.gov |