In July 2023, the U.S. Securities and Exchange Commission (SEC) adopted final rules requiring public companies to report material cybersecurity incidents under new Item 1.05 of Form 8-K beginning on ...

Notably, the Proposed Rule adds two new FAR clauses that will be required in all solicitations and contracts: (1) FAR 52.239-ZZ, Incident and Threat Reporting and Incident Response Requirements for ...

Let’s start by defining the “professional security incident report” as “a document created by an investigative process that captures the scene of a security incident; that serves as a company or ...

Cyberattacks targeting critical infrastructure and essential services are on the rise. In response, the Cybersecurity and Infrastructure Security Agency (CISA), under the Cyber Incident Reporting for ...

There are many challenges with generating long-form reports with AI, Cisco found ...

Cisco tested AI’s ability to write an accurate report on a tabletop security incident response exercise, and found that while ...

Today, the Department of Homeland Security (DHS) outlined a series of actionable recommendations on how the federal government can streamline and harmonize the reporting of cyber incidents to better ...

Security teams must update their security incident reporting policies and processes to account for remote work or risk exposure to increased threats. The ability for employees to work remotely comes ...