Three US regulators propose cyber-standards

Chris Hamblin

9 December 2016

The agencies refer to these standards, which are to sit on top of existing ones, as 'enhanced standards.' There are five categories of standard: cyber risk governance; cyber risk management; internal dependency management; external dependency management; and incident response, cyber resilience, and situational awareness. The consultation period ends on 17 January.