🔒OFAC Sanctions Notice
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) is publishing the names of one individual that has been placed on OFAC's Specially Designated Nationals and Blocked Persons List (SDN List) based on OFAC's determination that one or more applicable legal criteria were satisfied. All property and interests in property subject to U.S. jurisdiction of this individual is blocked, and U.S. persons are generally prohibited from engaging in transactions with him.
Learn More🔒Insights on Reliability Standard CIP-015-1 and Cyber Security Compliance
The Federal Energy Regulatory Commission (Commission) approves proposed Reliability Standard CIP-015-1 (Cyber Security--Internal Network Security Monitoring), which the North American Electric Reliability Corporation (NERC), submitted in response to a Commission directive. In addition, the Commission directs NERC to develop certain modifications to proposed Reliability Standard CIP-015-1 to extend internal network security monitoring to include electronic access control or monitoring systems and physical access control systems outside of the electronic security perimeter. The Commission also provides greater clarity about the term CIP-networked environment as it is used in proposed Reliability Standard CIP-015-1.
Learn More🔒FERC Withdraws Inquiry on Critical Infrastructure Protection Standards
The Commission withdraws a notice of inquiry, which sought comment on whether the then-effective Critical Infrastructure Protection (CIP) Reliability Standards adequately addressed: cybersecurity risks pertaining to data security, detection of anomalies and events, and mitigation of cybersecurity events. The Commission also sought comment on the potential risk of a coordinated cyberattack on geographically distributed targets and whether Commission action, including potential modifications to the CIP Reliability Standards, would be appropriate to address such risk.
Learn More⚖️Proposed Rule Change to Disruption Rules by NSCC
The Securities and Exchange Commission has published a notice concerning the proposed amendment to the Disruption Rules of the National Securities Clearing Corporation. This amendment aims to update critical definitions and streamline operational procedures affecting security transactions, with the goal of enhancing compliance and risk management practices within financial markets.
Learn More🔒FDA Cybersecurity Guidance for Medical Devices
The Food and Drug Administration (FDA or Agency) is announcing the availability of a final guidance entitled "Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions." This guidance updates the previous version of the guidance, of the same title, issued on September 27, 2023, and finalizes the draft guidance entitled "Select Updates for the Premarket Cybersecurity Guidance: Section 524B of the FD&C Act" issued on March 13, 2024. This guidance provides FDA's recommendations to industry regarding cybersecurity device design, labeling, and the documentation that FDA recommends be included in premarket submissions for devices with cybersecurity risk. Additionally, this guidance has been updated to identify the information FDA generally considers to be necessary for cyber devices to support obligations under the new amendments to the Federal Food, Drug, and Cosmetic Act (FD&C Act) for ensuring cybersecurity of devices.
Learn More📊FCC Info Collections on Urban Rates and Cybersecurity Pilot Program
The Federal Communications Commission is seeking approval for surveys related to urban rates for fixed voice and broadband services and the Schools and Libraries Cybersecurity Pilot Program. These initiatives aim to ensure reasonable pricing in underserved areas and bolster cybersecurity measures within educational institutions, requiring participation from various for-profit and non-profit entities.
Learn More💻NTIA Listening Session on Data Center Growth and Security
The National Telecommunications and Information Administration (NTIA) will convene a virtual listening session on Bolstering Data Center Growth, Resilience and Security. This session will build upon NTIA's previous request for comment (RFC) and serve as an important opportunity to "refresh the docket" with the latest market analysis, feedback, and data. Stakeholder input will be used to inform a forthcoming NTIA report outlining challenges and opportunities to data center growth, resilience and security, as well as a targeted, actionable menu of policy recommendations.
Learn More📊DHS CISA's SAFECOM Membership Questionnaire and Compliance Notice
DHS CISA Emergency Communications Division (ECD) will submit the following Information Collection Request (ICR) to the Office of Management and Budget (OMB) for review and clearance in accordance with the Paperwork Reduction Act of 1995.
Learn More☁️SEC Approves Clearing Agencies' Cloud Infrastructure Transition
The SEC has issued a notice of no objection for the Depository Trust Company, Fixed Income Clearing Corporation, and National Securities Clearing Corporation to host core clearance and settlement systems on a public cloud. This transition aims to enhance operational resilience and modernize technology, aligning with risk management principles while ensuring compliance with regulatory standards.
Learn More🔒Executive Order 14306
Executive Order 14306 aims to strengthen U.S. cybersecurity through amendments to previous orders. It highlights persistent threats, particularly from foreign adversaries, and mandates actions involving the establishment of guidance for secure software development and AI vulnerability management to bolster national defense in the digital domain.
Learn More