Overview

March 7

Watch Now

When critical infrastructure is hit by a disruptive cyberattack, national security officials need to know about it as soon as possible. That’s the guiding principle behind new rules coming soon from the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

 

In March 2022, the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) was signed into law.  Enactment of CIRCIA means CISA will require covered entities designated as critical infrastructure to report covered cyber incidents and ransomware payments. These reports are meant to allow CISA to analyze incoming reporting across sectors to spot trends and quickly share that information with network defenders to warn other potential victims.

 

In March 2024, CISA is expected to release proposed cyberattack reporting requirements for 16 categories of critical infrastructure, which includes educational institutions. Schools at all levels, from kindergarten through post-secondary institutions, need to be ready. Education leaders who review the anticipated regulations stand a better chance of staying compliant when the new rules come into effect, as well as have the opportunity to submit feedback to CISA around the proposed regulations before they are finalized.

 

Join Government Technology and Sophos for a live 30-minute webinar to learn more about the new reporting requirements and how education leaders can prepare for the upcoming changes.

 

Save the Date: Thursday, March 7, 2024, at 10 AM PT 1 PM ET

 

You’ll Learn:

  • What information schools will likely have to report according to the proposed CIRCIA rules
  • What constitutes a ‘covered incident’ that must be reported
  • How to best prepare for the proposed CIRCIA requirements

 

Speakers

Kristin Del Rosso headshot

Kristin Del Rosso

Field CTO, Public Sector, Sophos

Kristin Del Rosso is the Field CTO, Public Sector for Sophos, with a background in threat intelligence and incident response. With a range of corporate experience, she has successfully launched and grown multi-million-dollar security offerings, as well as focused on hands on malware reverse engineering, malicious actor tracking, vulnerability research, and OSINT investigations. She enjoys threat hunting and learning about new forms of security research, and in her spare time can be found gardening and working with startups.

Deborah A. Snyder headshot

Deborah A. Snyder — Moderator

Senior Fellow, Center for Digital Government

Deborah is an accomplished C-level influencer, with a broad range of experience in government, policy, cybersecurity, privacy and information technology. An experienced and highly respected thought leader who has held executive roles for over two decades. She recently retired from her position as New York state’s chief information security officer (CISO) after over 35 years of public service. In that role, as part of New York state’s information technology transformation and consolidation initiative, she helped redesign how the state protects its data. As state CISO, she directed the state’s comprehensive cybersecurity governance, risk management and compliance program, providing strategic leadership and vision, and assuring business-aligned, risk-based investments that maximized business opportunity and minimized cybersecurity risk. She also directed the NYS Cyber Command Center, hotline, procedures for reporting and response to cyberthreats, and digital forensics. She holds multiple industry certifications including Certified Information Systems Security Professional (CISSP); Certified in Risk and Information Systems Control (CRISC); SANS Strategic Planning, Policy, and Leadership (GSTRT) Global Information Assurance Certification; and Project Management Institute certified Project Management Professional (PMP).

© 2025 All Rights Reserved. E.Republic LLC
Privacy & AI / Do Not Sell My Personal Information