Friday, December 9, 2022

DOD Sends Industrial Base Cybersecurity Rule to OMB

Yesterday, the OMB’s Office of Information and Regulatory Affairs (OIRA) announced that it had received a notice of proposed rulemaking from DOD for “Department of Defense (DoD)-Defense Industrial Base (DIB) Cybersecurity (CS) Activities”. This rulemaking would expand the DIB threat information sharing activities.

According to the Spring 2022 Unified Agenda entry for this rulemaking:

“The DIB CS Program is currently only permitted to provide cyber threat information to cleared defense contractors, per the Program eligibility requirements within 32 CFR part 236. However, this proposed revision to the Federal rule would allow all defense contractors who process, store, develop, or transit DoD CUI to be eligible to participate and begin receiving critical cyber threat information. Expanding participation in the DIB CS Program is part of DoD’s comprehensive approach to collaborate with the DIB to counter cyber threats through information sharing between the Government and DIB participants. The expanded eligibility criteria will allow a broader community of defense contractors to participate in the DIB CS Program, in alignment with the National Defense Strategy.”

No comments:

/* Use this with templates/template-twocol.html */