Consumer Electronics Daily was a Warren News publication.

CISA Compiling Designation List for Critical Cyber Entities

The Cybersecurity and Infrastructure Security Agency is compiling a list of “systemically important” critical infrastructure entities to ensure the U.S. can depend on organizations providing vital, everyday services under threat from cyberattack, Executive Assistant Director-Cybersecurity Eric Goldstein told the House Cybersecurity Subcommittee during a hearing Wednesday. Chair Yvette Clarke, D-N.Y., said Congress is searching for the next cyber proposal to tackle after passing a new law requiring such entities to report cyber incidents to CISA. She noted the Cyberspace Solarium Commission recommended a new designation for critical infrastructure entities that are systemically important to national security. She asked about the need to codify the new designation into law, which would include new security requirements for entities. CISA is developing a list that aligns closely with the Solarium Commission’s recommendation, said Goldstein. This would mean CISA could drive more effective collaboration with organizations to drive down risks, he said. A much smaller list of systemically important entities is needed so Americans can be assured they can depend on certain services, said the White House’s acting Principal Deputy National Cyber Director Robert Knake.