Federal Register, Volume 89 Issue 241 (Monday, December 16, 2024)

[Federal Register Volume 89, Number 241 (Monday, December 16, 2024)]
[Notices]
[Pages 101614-101615]
From the Federal Register Online via the Government Publishing Office [www.gpo.gov]
[FR Doc No: 2024-29395]


=======================================================================
-----------------------------------------------------------------------

DEPARTMENT OF HOMELAND SECURITY

[Docket No. CISA-2024-0037]


Request for Comment on the National Cyber Incident Response Plan 
Update

AGENCY: Cybersecurity and Infrastructure Security Agency (CISA), 
Department of Homeland Security (DHS).

ACTION: Notice of availability; request for comments.

-----------------------------------------------------------------------

SUMMARY: CISA has released a draft of the National Cyber Incident 
Response Plan (NCIRP) Update for public comment. CISA invites 
cybersecurity and incident response stakeholders from across public and 
private sectors or other interested parties to review the draft update 
document and provide comments, relevant information, and feedback.

DATES: Written comments are requested on or before January 15, 2025. 
Submissions received after the deadline for receiving comments may not 
be considered.

ADDRESSES: You may submit comments, identified by docket number CISA-
2024-0037, by clicking on the ``Submit a Public Comment'' button above 
or by

[[Page 101615]]

following the instructions below for submitting comments directly via 
the Federal public document portal, at https://www.regulations.gov.
    Instructions: All comments received must include the agency name 
and docket number CISA-2024-0037. All comments received will be posted 
without change to https://www.regulations.gov, including any personal 
information provided. CISA reserves the right to publicly republish 
relevant and unedited comments in their entirety that are submitted to 
the docket. Do not include personal information such as account 
numbers, social security numbers, or names of other individuals. Do not 
submit confidential business information or otherwise sensitive or 
protected information.
    Docket: For access to the docket to read the draft National Cyber 
Incident Response Plan (NCIRP) Update or comments received, go to 
https://www.regulations.gov. For convenience, CISA has also posted the 
draft NCIRP Update on https://www.cisa.gov/national-cyber-incident-response-plan-ncirp.

FOR FURTHER INFORMATION CONTACT: 
    Technical Content information: Mark Peters, 771-212-7125, 
[email protected].
    Program information: Michael Fogarty, 202-412-8385, 
[email protected].

SUPPLEMENTARY INFORMATION:

I. Background

    The NCIRP was first written and developed in accordance with 
Presidential Policy Directive 41 (PPD-41)--U.S. Cyber Incident 
Coordination and describes how the federal government; private sector; 
and state, local, tribal, and territorial (SLTT) government entities 
will coordinate to manage, respond to, and mitigate the consequences of 
significant cyber incidents. Due to the evolving cyber threat 
landscape--including increasing risks to critical infrastructure and 
public services--the need to update the NCIRP has never been greater.

II. NCIRP Update

    The NCIRP Update is being led by CISA through the Joint Cyber 
Defense Collaborative (JCDC), a public-private cybersecurity 
collaborative established by CISA to unite the global cyber community 
in the collective defense of cyberspace. The JCDC leverages joint cyber 
planning authorities granted to the agency by Congress in the 2021 
National Defense Authorization Act (codified at 6 U.S.C. 665b). The 
update addresses changes in the cyber threat and operations landscape 
by incorporating feedback and lessons learned from stakeholders to make 
the updated NCIRP more fully inclusive across non-federal 
stakeholders--further establishing a foundation for continued 
improvement of the nation's response to significant cyber incidents.

III. Coordination

    CISA, through JCDC, coordinated with a range of experts and 
stakeholders across a wide spectrum of federal government agencies, 
international partners, SLTT entities, and private industry to receive 
each entity's input to help guide the content of the NCIRP Update. For 
more information, including background information and opportunities 
for stakeholder engagement, you can visit https://www.cisa.gov/national-cyber-incident-response-plan-ncirp.

IV. Draft NCIRP Update Document Availability

    The draft NCIRP Update is available on CISA's website for download 
at: https://www.cisa.gov/national-cyber-incident-response-plan-ncirp 
and on the docket to read the draft National Cyber Incident Response 
Plan (NCIRP) Update on www.regulations.gov.
    This notice is issued under the authority of 6 U.S.C. 652, 659, 
660, and 665b.

Jeffrey E. Greene,
Executive Assistant Director for Cybersecurity, Cybersecurity and 
Infrastructure Security Agency, Department of Homeland Security.
[FR Doc. 2024-29395 Filed 12-13-24; 8:45 am]
BILLING CODE 9111-LF-P